chainguard-dev / stigsLinks
☆13Updated 2 weeks ago
Alternatives and similar repositories for stigs
Users that are interested in stigs are comparing it to the libraries listed below
Sorting:
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆97Updated last week
- Helm Chart for deploying GUAC☆17Updated 3 weeks ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Github Action to automatically update digests for container images.☆64Updated last month
- Dynamic GitHub Actions from Wolfi packages☆43Updated last month
- The Compliance Validator☆180Updated this week
- Search an SBOM for licenses and the packages they belong to☆93Updated 2 weeks ago
- Demos and resources of the Istio + Gatekeeper talks at IstioCon 2022 and GitOpsCon 2022☆14Updated last year
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆84Updated 2 weeks ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- (d)ocker(f)ile (c)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆76Updated 2 weeks ago
- `yorbox` is a command-line interface (CLI) tool that helps manage tags consistently across infrastructure as code (IaC) frameworks. It is…☆33Updated 6 months ago
- General sigstore community repo☆41Updated 2 weeks ago
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practice…☆59Updated 6 months ago
- Helm charts for sigstore project☆76Updated this week
- Scan GitHub Actions Workflow logs for IOCs☆15Updated 2 weeks ago
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Updated 2 years ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆63Updated last week
- Operator providing Kubernetes cluster compliance checks☆47Updated this week
- ☆45Updated this week
- Example apps demonstrating Chainguard platform integrations☆11Updated 3 weeks ago
- The Aqua Security Provider for Terraform allows you to declaratively define the configuration of your Aqua platform.☆37Updated 3 weeks ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆50Updated last year
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆66Updated this week
- A pane of glass between you and your Kubernetes clusters.☆45Updated last year
- ☆62Updated 11 months ago
- Git action to generate security lint report for Kubernetes workload YAML files on PR☆28Updated 3 years ago
- sigstore the hard way!☆112Updated last year
- A place for policy work group related proposals and prototypes.☆67Updated last month