aws-samples / amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software
This repo hosts Terraform code for generating and analyzing Software Bill of Materials (SBOM) for Amazon ECR images. It helps identify Amazon EKS images with vulnerable software components using Amazon Athena.
☆15Updated last year
Alternatives and similar repositories for amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software:
Users that are interested in amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software are comparing it to the libraries listed below
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in G…☆1Updated 5 months ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Automating Terraform with the power of make.☆24Updated last month
- All Aqua deployments options and aquactl configuration☆58Updated this week
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- Stop EC2 instances and RDS/Aurora databases overnight by tagging them with cron-style schedules, to cut AWS costs. Trigger AWS Backup, to…☆35Updated this week
- ☆22Updated 2 weeks ago
- Like the unix tree command but for GCP Org Heirarchy☆27Updated 3 years ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Lambda function for verifying signed images in ECS☆32Updated last year
- A Go program to display certificate chains simply and quickly with an easy to remember syntax☆27Updated 5 months ago
- Create and store a hash of the Terraform modules used by your configuration☆76Updated 8 months ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated this week
- Slack alert bot for matching Github Audit Events☆10Updated 4 months ago
- Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.☆52Updated this week
- Example of how to write OPA rules with conftest in a modular fashion for Terraform 0.12 plans.☆12Updated 5 years ago
- Alcide Kubernetes Advisor ... Cluster Hygiene & Security Scanner - Pipeline Integration☆29Updated 2 years ago
- ☆12Updated 3 years ago
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 2 months ago
- ☆25Updated this week
- ☆21Updated last year
- CLI tool for Amazon ECR☆17Updated last year
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆88Updated this week
- *READY TO USE* Terraform baseline for implementing essential AWS security best practices, including Organizations, SSO, MFA, SCPs, Budget…☆23Updated 4 months ago
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆111Updated 2 weeks ago
- ☆35Updated 3 years ago
- ☆18Updated last week
- A CLI used to work with the Wolfi OSS project☆60Updated this week
- ☆58Updated 3 weeks ago