aws-samples / amazon-eks-use-sbom-to-find-container-image-with-vulnerable-softwareLinks
This repo hosts Terraform code for generating and analyzing Software Bill of Materials (SBOM) for Amazon ECR images. It helps identify Amazon EKS images with vulnerable software components using Amazon Athena.
☆16Updated last year
Alternatives and similar repositories for amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software
Users that are interested in amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software are comparing it to the libraries listed below
Sorting:
- CLI tool for Amazon ECR☆17Updated last year
- ☆70Updated 3 months ago
- ☆41Updated last year
- *READY TO USE* Terraform baseline for implementing essential AWS security best practices, including Organizations, SSO, MFA, SCPs, Budget…☆24Updated 7 months ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 5 months ago
- (d)ocker(f)ile (c)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆76Updated 2 weeks ago
- A Dashboard for AWS ECR usage based on CloudWatch log insight queries☆70Updated 10 months ago
- Lambda function for verifying signed images in ECS☆33Updated last year
- Slack alert bot for matching Github Audit Events☆10Updated 7 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Runs IAM policy linting and security checks against either a single AWS account or a set of member accounts of an AWS Organization.☆145Updated this week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Ghat is a tool for updating your GitHub actions and Terraform with the latest version of it dependencies and using immutable hashes inste…☆26Updated 2 months ago
- AWS CloudFormation template sync controller for Flux☆54Updated 10 months ago
- A library of example Spacelift policies☆47Updated 2 weeks ago
- OPA Terraform Demo☆28Updated 2 years ago
- ☆31Updated 2 months ago
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆128Updated 2 months ago
- Deploy infrastructure-as-code at the scale of an AWS organization☆39Updated 6 months ago
- Falco Running with Ptrace(2) for Kernel Events☆36Updated 4 years ago
- This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in G…☆1Updated 8 months ago
- AWS VPC Subnets Watcher☆77Updated last year
- ☆42Updated 2 years ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- Service Control Policies that have been Latacora recommended all wrapped up in terraform that is easy to attach to an OU.☆26Updated last year
- ☆24Updated last year
- Cloud governance reports from native services in a clear and readable digest☆29Updated last year
- Terraform templates for CI/CD to Cloud federation and Cloud2Cloud IAM federations☆65Updated 7 months ago
- Container Hardening Priorities Specification (CHPS)☆31Updated 2 months ago