cdfoundation / CICD-CybersecurityLinks
CI/CD pipelines are critical touchpoints in modern software development where code-level vulnerabilities, container security, and vulnerability remediation efforts converge. This SIG is dedicated to advancing security tooling within CI/CD pipelines, with a focus on defining best security practices and developing frameworks for secure pipeline.
β22Updated this week
Alternatives and similar repositories for CICD-Cybersecurity
Users that are interested in CICD-Cybersecurity are comparing it to the libraries listed below
Sorting:
- SIG Software Supply Chainβ16Updated last year
- πCNCF-created tool for analyzing and graphing developer contributionsβ118Updated last week
- πFork for tracking CNCF projectsβ75Updated last week
- Instructions and scripts how to deploy Keptn on K3sβ29Updated 3 years ago
- Examples for demonstrating keptn use casesβ22Updated 2 years ago
- Documentation for users of Jenkins project infrastructureβ25Updated last week
- CDF Events Special Interest Groupβ51Updated last year
- Jenkins Infrastructure Kubernetes Managementβ62Updated this week
- GitHub Action for creating software bill of materials using Syft.β219Updated this week
- Docs and Tutorials for Chainguardβ88Updated this week
- Docker images using large file support for binary filesβ26Updated this week
- Scenario examples for Killercoda.comβ126Updated last month
- A collection of information from people working on and with Tekton.β48Updated 2 years ago
- CDF Interoperability SIGβ67Updated last year
- A VS Code Extension for Trivyβ164Updated this week
- CLOMonitor is a tool that periodically checks open source projects repositories to verify they meet certain project health best practicesβ144Updated last week
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practiceβ¦β65Updated last year
- Stores the data that will populate the various people listings on cncf.ioβ148Updated this week
- Publish Jenkins Remoting monitoring data to an OpenTelemetry endpoint.β15Updated last year
- Keptn community content: governance, community management, project infrastructure etc.β53Updated 11 months ago
- GitHub Action to automate testing for your OPA (Open Policy Agent) Rego policies, generates a report with coverage information, and postsβ¦β22Updated last week
- Contains every things needed to release jenkins core from the jenkins infra projectβ17Updated this week
- in-toto is a framework to secure the software supply chain.β71Updated 2 months ago
- The Aqua Security Provider for Terraform allows you to declaratively define the configuration of your Aqua platform.β37Updated last week
- Cosign Github Actionβ180Updated 2 weeks ago
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloadsβ95Updated this week
- Plugin for retrieving Dependencytrack metrics in Backstageβ20Updated last year
- Discover great opportunities to become a Cloud Native contributorβ110Updated last week
- CDF Technical Oversight Committee (TOC) facilitates communication and collaboration among the Technical Projectsβ115Updated 3 months ago
- The Cartografos working group aims to provide tools to help adopters and end-users to navigate the CNCF landscape and the wider cloud natβ¦β142Updated 4 months ago