chps-dev / chps
Container Hardening Priorities Specification (CHPS)
☆20Updated 2 weeks ago
Alternatives and similar repositories for chps:
Users that are interested in chps are comparing it to the libraries listed below
- ☆35Updated 3 years ago
- A pane of glass between you and your Kubernetes clusters.☆45Updated last year
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆59Updated this week
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 3 months ago
- Transparenty Immutable Container Image Tags☆20Updated last year
- Scans SBOMs for vulnerabilities with Grype☆80Updated last week
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Trivy plugin for OCI referrers☆23Updated 11 months ago
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆60Updated last week
- Create a graph visualization of your Flux Kustomization tree☆16Updated 8 months ago
- ☆20Updated 8 months ago
- Kube State Metrics `CustomResourceState` configurations for Gateway API resources☆21Updated 2 months ago
- In this repository, the development of the gardener extension, which deploys the flux controllers automatically to shoot clusters, takes …☆26Updated last week
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆80Updated this week
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated last week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆62Updated this week
- A multi-tenancy focused solution, that facilitates collection of telemetry data from Kubernetes workloads transparently.☆42Updated this week
- To manage Docker Content Trust and Notary certificates☆12Updated this week
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆55Updated this week
- A Prometheus Exporter for managing vulnerabilities in kubernetes by using trivy☆26Updated 3 years ago
- ☆23Updated 2 years ago
- KubeDNS Shepherd is a Kubernetes controller that manages the DNS configuration of workloads, ensuring efficient and reliable way to confi…☆38Updated this week
- KubeTrivyExporter is Prometheus Exporter that collects all vulnerabilities detected by aquasecurity/trivy in the kubernetes cluster.☆52Updated 2 years ago
- sigstore the hard way!☆111Updated 11 months ago
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆62Updated this week
- A kubectl plugin to visualize network policies rules.☆96Updated last year
- Plugin for Helm to integrate the sigstore ecosystem☆62Updated this week
- approver-policy is a cert-manager approver that allows users to define policies that restrict what certificates can be requested.☆80Updated last week