cdfoundation / CICD-CybersecurityLinks
CI/CD pipelines are critical touchpoints in modern software development where code-level vulnerabilities, container security, and vulnerability remediation efforts converge. This SIG is dedicated to advancing security tooling within CI/CD pipelines, with a focus on defining best security practices and developing frameworks for secure pipeline.
☆20Updated this week
Alternatives and similar repositories for CICD-Cybersecurity
Users that are interested in CICD-Cybersecurity are comparing it to the libraries listed below
Sorting:
- SIG Software Supply Chain☆16Updated 10 months ago
- Instructions and scripts how to deploy Keptn on K3s☆29Updated 2 years ago
- 📈CNCF-created tool for analyzing and graphing developer contributions☆110Updated this week
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆93Updated last week
- A VS Code Extension for Trivy☆148Updated 2 weeks ago
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practice…☆62Updated 9 months ago
- This is the source repository for https://bestpractices.cd.foundation☆14Updated last year
- Examples for demonstrating keptn use cases☆22Updated last year
- Docs and Tutorials for Chainguard☆85Updated this week
- Spinnaker Gardening Virtual #CommunityHack - Read all about the fun, projects, and prizes!☆12Updated 4 years ago
- Scenario examples for Killercoda.com☆117Updated last year
- Jenkins Infrastructure Kubernetes Management☆61Updated this week
- Documentation for users of Jenkins project infrastructure☆23Updated this week
- CDF Events Special Interest Group☆50Updated 10 months ago
- Policy Reporter Kyverno Plugin☆15Updated last year
- GitHub Action for creating software bill of materials using Syft.☆202Updated last week
- Plugin for retrieving Dependencytrack metrics in Backstage☆20Updated last year
- CDF Interoperability SIG☆66Updated 10 months ago
- The Linux Foundation Certified GitOps Associate (CGOA) Study Guide☆110Updated 4 months ago
- CLI for Monokle core validation library☆23Updated last year
- The Aqua Security Provider for Terraform allows you to declaratively define the configuration of your Aqua platform.☆37Updated last week
- A Github Action to automatically update digests for container images.☆74Updated last month
- 📜Fork for tracking CNCF projects☆62Updated this week
- The Cartografos working group aims to provide tools to help adopters and end-users to navigate the CNCF landscape and the wider cloud nat…☆138Updated 11 months ago
- Provides our opinionated point of view on how GitOps can be used to manage the infrastructure, services and application layers of K8s bas…☆117Updated 4 months ago
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆51Updated last month
- CLOMonitor is a tool that periodically checks open source projects repositories to verify they meet certain project health best practices☆137Updated this week
- Helm Charts for Dependency-Track☆42Updated last week
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆220Updated 2 weeks ago
- Companion module to the Advanced Modules track on learn.hashicorp.com☆61Updated last year