argonsecurity / pipeline-parserLinks
☆16Updated 3 weeks ago
Alternatives and similar repositories for pipeline-parser
Users that are interested in pipeline-parser are comparing it to the libraries listed below
Sorting:
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆758Updated 9 months ago
- ☆20Updated 2 years ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆137Updated last year
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆288Updated last year
- Documenting your Threat Models with HCL☆433Updated 3 months ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆95Updated 7 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆84Updated last year
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆359Updated last week
- ☆114Updated last month
- Generate a score for your sbom to understand if it will actually be useful.☆233Updated last year
- A full insecure kubernetes application for testing security tools☆89Updated 5 months ago
- A curated list of resources about detecting threats and defending Kubernetes systems.☆393Updated 2 years ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆345Updated last week
- Utility that provides an API platform for validating, querying and managing BOM data☆120Updated this week
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆495Updated last week
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics��☆209Updated this week
- Trivy's misconfiguration scanning engine☆216Updated 8 months ago
- A tool for preventing the installation of malicious npm and PyPI packages☆162Updated this week
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆85Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆109Updated 8 months ago
- Scan GitHub Actions Workflow logs for IOCs☆15Updated 2 weeks ago
- OSV-SCALIBR: A library for Software Composition Analysis☆502Updated this week
- Threat Designer is a GenerativeAI application designed to automate and streamline the threat modeling process for secure system design.☆148Updated 3 weeks ago
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆243Updated last week
- A tool to check the security settings of Github Organizations.☆72Updated 2 years ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆215Updated 4 months ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆576Updated 5 months ago
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆118Updated this week
- Runtime Security Solution for your CI/CD Pipeline☆109Updated 3 months ago