aws-samples / amazon-eks-use-sbom-to-find-container-image-with-vulnerable-softwareLinks
This repo hosts Terraform code for generating and analyzing Software Bill of Materials (SBOM) for Amazon ECR images. It helps identify Amazon EKS images with vulnerable software components using Amazon Athena.
☆16Updated 2 years ago
Alternatives and similar repositories for amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software
Users that are interested in amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software are comparing it to the libraries listed below
Sorting:
- All Aqua deployments options and aquactl configuration☆61Updated 2 weeks ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆59Updated 2 years ago
- ☆285Updated 2 years ago
- Get notified when actions are taken in the AWS Console.☆323Updated 9 months ago
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆137Updated this week
- Useful scripts, Docker images, docker-compose apps, and Terraform modules.☆151Updated last week
- Style guide for Rego☆203Updated 3 weeks ago
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆366Updated 2 months ago
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- AwS CLouD NeTWoRkiNg SuiTE 3000☆22Updated this week
- A library of rules for Conftest used to detect misconfigurations within Terraform configuration files☆191Updated 3 years ago
- ☆175Updated 4 months ago
- Provides a prometheus exporter for monitoring aspects secrets stored on a running HashiCorp Vault server☆32Updated 2 years ago
- Terraform module for serverless certificate authority on AWS☆150Updated last week
- ☆139Updated 7 months ago
- A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices☆343Updated 4 months ago
- ☆65Updated 3 weeks ago
- An open source, cloud-native security to protect everything from build to runtime☆322Updated this week
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆223Updated last month
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- sigstore installation walkthrough, local☆63Updated last year
- Security configuration checks for popular cloud native applications and infrastructure.☆119Updated 3 years ago
- Container Hardening Priorities Specification (CHPS)☆41Updated 6 months ago
- Bootstrap Kubernetes the hard way on Google Cloud Platform. No scripts.☆75Updated 2 years ago
- Automate permissions to your cloud and critical applications.☆242Updated last year
- A Dashboard for AWS ECR usage based on CloudWatch log insight queries☆70Updated last year
- For engineers and security teams driving fast and secure software supply chains☆83Updated 2 years ago
- This is the reference implementation of CNOE and its toolings on AWS☆109Updated 2 months ago
- HCP Terraform starter workflows and github actions to automate Terraform Cloud CI/CD pipelines.☆170Updated last month
- IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, hum…☆296Updated 10 months ago