aws-samples / amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software
This repo hosts Terraform code for generating and analyzing Software Bill of Materials (SBOM) for Amazon ECR images. It helps identify Amazon EKS images with vulnerable software components using Amazon Athena.
☆15Updated last year
Alternatives and similar repositories for amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software:
Users that are interested in amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software are comparing it to the libraries listed below
- Slack alert bot for matching Github Audit Events☆10Updated 4 months ago
- A multi scanner for docker images. It drives Clair, Anchore, Trivy, Snyk, Grype, AWS ECR scans and consolidates the results.☆14Updated last year
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- CLI tool for Amazon ECR☆17Updated last year
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆111Updated 3 weeks ago
- Automating Terraform with the power of make.☆24Updated last month
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Stop EC2 instances and RDS/Aurora databases overnight by tagging them with cron-style schedules, to cut AWS costs. Trigger AWS Backup, an…☆35Updated this week
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆27Updated 5 months ago
- Software signing just got easier☆16Updated last year
- Configure and deploy AWS Security Hub.☆16Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- Awesome AWS service control policies (SCPs)☆25Updated last month
- Run individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters u…☆31Updated 5 months ago
- ☆11Updated last year
- *READY TO USE* Terraform baseline for implementing essential AWS security best practices, including Organizations, SSO, MFA, SCPs, Budget…☆23Updated 5 months ago
- All Aqua deployments options and aquactl configuration☆58Updated last week
- This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in G…☆1Updated 5 months ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated last year
- Create and store a hash of the Terraform modules used by your configuration☆76Updated 8 months ago
- ☆16Updated last year
- A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources☆16Updated this week
- ☆41Updated last year
- A CLI used to work with the Wolfi OSS project☆60Updated this week
- AWS CloudFormation template sync controller for Flux☆53Updated 8 months ago
- Use SQL to instantly query resources, data sources and more from Terraform code. Open source CLI. No DB required.☆28Updated 2 weeks ago
- Terraform module to Automatically suppress findings recorded by the AWS Security Hub service based on a pre-defined and configurable supp…☆18Updated 2 weeks ago
- Ghat is a tool for updating your GitHub actions and Terraform with the latest version of it dependencies and using immutable hashes inste…☆25Updated 2 weeks ago
- ☆58Updated 3 weeks ago