aws-samples / amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software
This repo hosts Terraform code for generating and analyzing Software Bill of Materials (SBOM) for Amazon ECR images. It helps identify Amazon EKS images with vulnerable software components using Amazon Athena.
☆15Updated last year
Alternatives and similar repositories for amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software:
Users that are interested in amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software are comparing it to the libraries listed below
- vscode extension for tfsec☆30Updated 2 years ago
- A tool to show what AWS account and identity you're using.☆56Updated last year
- Dynamic Application Security Testing (DAST) for Cloud☆44Updated 2 years ago
- This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in G…☆1Updated 3 months ago
- Slack alert bot for matching Github Audit Events☆10Updated 2 months ago
- Automating Terraform with the power of make.☆23Updated 3 weeks ago
- Tag instances & databases with cron-style stop/start schedules to cut AWS costs. Also schedule EBS, EC2 & RDS backups, plus CloudFormatio…☆35Updated 2 years ago
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆26Updated 2 months ago
- Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts☆50Updated 2 weeks ago
- Create and store a hash of the Terraform modules used by your configuration☆76Updated 6 months ago
- AWS CloudFormation template sync controller for Flux☆53Updated 5 months ago
- Example of how to write OPA rules with conftest in a modular fashion for Terraform 0.12 plans.☆12Updated 5 years ago
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 2 years ago
- Awesome AWS service control policies (SCPs)☆22Updated 2 months ago
- AwS CLouD NeTWoRkiNg SuiTE 3000☆21Updated this week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Terraform templates for CI/CD to Cloud federation and Cloud2Cloud IAM federations☆61Updated 2 months ago
- Demo application using GitOps best practices with Flux☆13Updated 3 years ago
- Terraform provider for Policy Sentry (IAM least privilege generator and auditor)☆29Updated last year
- An opinionated, multi-cloud, multi-region, best-practice accelerator for Terraform.☆49Updated this week
- ☆21Updated last year
- ☆40Updated 2 years ago
- Sharable Config Presets for Renovatebot, especially useful for DevOps folks☆47Updated this week
- Lambda function for verifying signed images in ECS☆33Updated 10 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated last week
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated 7 months ago
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆102Updated last week