chainguard-dev / maxcve
☆18Updated this week
Alternatives and similar repositories for maxcve:
Users that are interested in maxcve are comparing it to the libraries listed below
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- An SBOM query language and associated utilities☆54Updated last year
- ☆53Updated this week
- This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in G…☆1Updated 5 months ago
- ☆41Updated 2 years ago
- Scans SBOMs for vulnerabilities with Grype☆79Updated this week
- ☆20Updated 10 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆80Updated 2 months ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆23Updated 3 months ago
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆80Updated this week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆82Updated last week
- Kubernetes Admission Controller for Image Scanning using OPA☆50Updated last year
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated last week
- Software signing just got easier☆16Updated last year
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆65Updated 2 months ago
- Kubernetes audit logging, when you don't control the control plane☆71Updated this week
- Slack alert bot for matching Github Audit Events☆10Updated 4 months ago
- Throw a tag at it and it comes back with a checksum.☆116Updated this week
- a tool to audit the istio service mesh☆173Updated 3 years ago
- ☆22Updated 2 years ago
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 2 months ago
- An query language and interactive tooling to work with SBOM data.☆14Updated 5 months ago
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated 2 years ago
- SLSA level 3 action☆11Updated 10 months ago
- EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.☆27Updated this week
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆30Updated 5 months ago
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Updated 2 years ago
- A set of utilities and classes for working with Open Policy Agent based tools, including Gatekeeper and Conftest☆39Updated 4 months ago