aws-samples / amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software
This repo hosts Terraform code for generating and analyzing Software Bill of Materials (SBOM) for Amazon ECR images. It helps identify Amazon EKS images with vulnerable software components using Amazon Athena.
☆15Updated last year
Alternatives and similar repositories for amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software:
Users that are interested in amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software are comparing it to the libraries listed below
- Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts☆51Updated 2 weeks ago
- *READY TO USE* Terraform baseline for implementing essential AWS security best practices, including Organizations, SSO, MFA, SCPs, Budget…☆23Updated 5 months ago
- An opinionated, multi-cloud, multi-region, best-practice accelerator for Terraform.☆50Updated this week
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Use SQL to instantly query resources, data sources and more from Terraform code. Open source CLI. No DB required.☆28Updated last week
- Create and store a hash of the Terraform modules used by your configuration☆78Updated 9 months ago
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆125Updated last week
- Sharable Config Presets for Renovatebot, especially useful for DevOps folks☆50Updated this week
- Slack alert bot for matching Github Audit Events☆10Updated 5 months ago
- Automating Terraform with the power of make.☆24Updated last month
- This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in G…☆1Updated 6 months ago
- Run individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters u…☆31Updated last week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- A CLI used to work with the Wolfi OSS project☆60Updated this week
- Ghat is a tool for updating your GitHub actions and Terraform with the latest version of it dependencies and using immutable hashes inste…☆26Updated this week
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆27Updated 6 months ago
- Run common terramate commands in a single GitHub action☆17Updated 2 months ago
- Local development for AWS Lambda's and Terraform☆37Updated 3 months ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆85Updated this week
- Terraform templates for CI/CD to Cloud federation and Cloud2Cloud IAM federations☆63Updated 5 months ago
- General purpose reusable Github Action workflows☆37Updated 3 weeks ago
- ☆42Updated 8 months ago
- A multi scanner for docker images. It drives Clair, Anchore, Trivy, Snyk, Grype, AWS ECR scans and consolidates the results.☆14Updated last year
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- vscode extension for tfsec☆30Updated 2 years ago
- Self-service management of complex Cloud Environments☆97Updated 3 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Awesome AWS service control policies (SCPs), Resource Control Policies (RCPs), and other organizational policies☆26Updated 2 months ago
- ☆42Updated 5 months ago
- InfraSpec is a tool for running infrastructure tests written in pure Gherkin syntax☆30Updated last month