aquasecurity / trivy-plugin-aquaLinks
☆12Updated this week
Alternatives and similar repositories for trivy-plugin-aqua
Users that are interested in trivy-plugin-aqua are comparing it to the libraries listed below
Sorting:
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆754Updated 8 months ago
- Trivy's misconfiguration scanning engine☆218Updated 6 months ago
- Regal is a linter and language server for Rego, bringing your policy development experience to the next level!☆320Updated this week
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆492Updated last week
- Language-agnostic SLSA provenance generation for Github Actions☆491Updated last month
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆478Updated last month
- Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)☆91Updated last month
- Agile Threat Modeling Toolkit☆685Updated 2 weeks ago
- Simple Wrapper library for adding comments to GitHub PRs☆16Updated last year
- Verify provenance from SLSA compliant builders☆275Updated 2 weeks ago
- ☆19Updated 2 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆231Updated 11 months ago
- Software Supply Chain Security Platform☆346Updated this week
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆193Updated last year
- The security workflow engine!☆119Updated this week
- ☆16Updated last year
- OWASP Foundation Web Respository☆589Updated last year
- The Compliance Validator☆182Updated this week
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆347Updated 4 months ago
- A utility to generate SPDX-compliant Bill of Materials manifests☆402Updated this week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆815Updated 4 months ago
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆349Updated 2 months ago
- ☆47Updated last week
- Programmatically open new JIRA tickets for all Snyk Issues☆53Updated 3 weeks ago
- Anchore container analysis and scan provided as a GitHub Action☆250Updated this week
- Open source compliance tool for development platforms.☆288Updated last year
- The Community repository is the place to go for support with OPA and OPA Sub-Projects, like Conftest and Gatekeeper.☆39Updated 4 months ago
- Notice: Postee is no longer under active development or maintenance.☆210Updated 2 months ago
- Automate permissions to your cloud and critical applications.☆241Updated last year
- Bitbucket Pipe for running Trivy in a Pipeline☆20Updated 2 years ago