Catalogue all images of a Kubernetes cluster to multiple targets with Syft
☆230Jun 9, 2026Updated this week
Alternatives and similar repositories for sbom-operator
Users that are interested in sbom-operator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Scans SBOMs for vulnerabilities with Grype☆87Jun 6, 2026Updated last week
- Manages client side git hooks resulting in the ability to create git action pipelines.☆78Jul 5, 2024Updated last year
- BadRobot - Operator Security Audit Tool☆229Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆243Aug 13, 2024Updated last year
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…☆11May 11, 2026Updated last month
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Automatically removes Cloud managed services and Kubernetes resources based on tags with TTL☆228May 19, 2026Updated 3 weeks ago
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆167May 11, 2026Updated last month
- A utility to generate SPDX-compliant Bill of Materials manifests☆458Updated this week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Apr 17, 2023Updated 3 years ago
- print x509 certificate info☆242Mar 6, 2026Updated 3 months ago
- Kubernetes RBAC static analysis & visualisation tool☆740Feb 13, 2026Updated 4 months ago
- An SBOM query language and associated utilities☆56Jan 22, 2024Updated 2 years ago
- Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosign☆12Sep 15, 2021Updated 4 years ago
- An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster☆473Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.☆45Oct 30, 2023Updated 2 years ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆534Updated this week
- Vulnerability Scanner Suite based on grype and syft from anchore☆53May 5, 2022Updated 4 years ago
- Integrates Spiffe and Vault to have secretless authentication☆99Jun 4, 2026Updated last week
- Github Action implementation of SLSA Provenance Generation☆50Updated this week
- Kubernetes Application Archive☆152May 4, 2022Updated 4 years ago
- Submit SBOMs to GitHub's dependency submission API☆18Dec 4, 2025Updated 6 months ago
- A tool to create, transform and attest VEX metadata☆195Updated this week
- sigstore the hard way!☆120May 29, 2026Updated 2 weeks ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A command line utility that provides a secure method to get your secrets from your existing password manager.☆62Dec 18, 2022Updated 3 years ago
- All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.☆1,196Apr 17, 2026Updated last month
- SPDX Merge tool☆51May 18, 2026Updated 3 weeks ago
- Template repository for testing CLI features of applications written in Go☆10Nov 14, 2021Updated 4 years ago
- OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure☆1,461May 25, 2026Updated 3 weeks ago
- statexec is a versatile command execution tool written in Go that gathers system metrics during the execution of a specified command.☆47Jan 21, 2024Updated 2 years ago
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 3 years ago
- Enrich SBOMs with data from third party services☆228May 18, 2026Updated 3 weeks ago
- 🎊 Count resources by kind☆39Aug 2, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Keyless Git signing using Sigstore☆1,092Updated this week
- ☆97Dec 15, 2023Updated 2 years ago
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,502Updated this week
- All our dashboards for Grafana☆26Updated this week
- Support CI generation of SBOMs via golang tooling.☆427Jan 13, 2025Updated last year
- Terrap - a powerful CLI tool that scans your infrastructure and identifies any required changes.☆66Dec 5, 2023Updated 2 years ago
- kctxsync is a command-line tool to sync certificate and key data from a remote Kubernetes cluster's kubeconfig to your local kubeconfig.☆10Feb 27, 2025Updated last year