argonsecurity / pipeline-parserLinks
☆15Updated 11 months ago
Alternatives and similar repositories for pipeline-parser
Users that are interested in pipeline-parser are comparing it to the libraries listed below
Sorting:
- ☆19Updated 2 years ago
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆748Updated 5 months ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆94Updated 3 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆203Updated this week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆98Updated 5 months ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆81Updated this week
- Runtime Security Solution for your CI/CD Pipeline☆104Updated 2 months ago
- Scan GitHub Actions Workflow logs for IOCs☆15Updated this week
- A tool for preventing the installation of malicious PyPI and npm packages☆145Updated this week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…�☆104Updated last year
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆71Updated 2 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆229Updated 9 months ago
- ☆178Updated last month
- Utility that provides an API platform for validating, querying and managing BOM data☆113Updated last week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆135Updated last year
- VulnCheck's official command line tool☆134Updated this week
- A full insecure kubernetes application for testing security tools☆87Updated last month
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆160Updated 2 weeks ago
- A tool to create, transform and attest VEX metadata☆139Updated 2 weeks ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆482Updated this week
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆285Updated 9 months ago
- ☆68Updated 3 weeks ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- A list of cloud security tools and vendors.☆166Updated 9 months ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆310Updated this week
- Documenting your Threat Models with HCL☆430Updated this week
- Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git☆92Updated this week
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆165Updated last year
- library for adding comments to git PRs☆14Updated 8 months ago
- ☆52Updated 4 months ago