Catalogue all images of a Kubernetes cluster to multiple targets with Syft
☆223Apr 12, 2026Updated this week
Alternatives and similar repositories for sbom-operator
Users that are interested in sbom-operator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Scans SBOMs for vulnerabilities with Grype☆85Updated this week
- Manages client side git hooks resulting in the ability to create git action pipelines.☆78Jul 5, 2024Updated last year
- BadRobot - Operator Security Audit Tool☆226Feb 2, 2026Updated 2 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆241Aug 13, 2024Updated last year
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…☆11Updated this week
- Deploy open-source AI quickly and easily - Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Automatically removes Cloud managed services and Kubernetes resources based on tags with TTL☆228Mar 17, 2026Updated 3 weeks ago
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆166Feb 10, 2026Updated 2 months ago
- A utility to generate SPDX-compliant Bill of Materials manifests☆451Updated this week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Apr 17, 2023Updated 2 years ago
- print x509 certificate info☆242Mar 6, 2026Updated last month
- Kubernetes RBAC static analysis & visualisation tool☆739Feb 13, 2026Updated 2 months ago
- An SBOM query language and associated utilities☆56Jan 22, 2024Updated 2 years ago
- Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosign☆12Sep 15, 2021Updated 4 years ago
- An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster☆472Apr 7, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.☆45Oct 30, 2023Updated 2 years ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆522Apr 7, 2026Updated last week
- Vulnerability Scanner Suite based on grype and syft from anchore☆52May 5, 2022Updated 3 years ago
- Integrates Spiffe and Vault to have secretless authentication☆99Updated this week
- Github Action implementation of SLSA Provenance Generation☆50Apr 7, 2026Updated last week
- Kubernetes Application Archive☆152May 4, 2022Updated 3 years ago
- Submit SBOMs to GitHub's dependency submission API☆18Dec 4, 2025Updated 4 months ago
- A tool to create, transform and attest VEX metadata☆182Apr 7, 2026Updated last week
- sigstore the hard way!☆118Aug 6, 2025Updated 8 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A command line utility that provides a secure method to get your secrets from your existing password manager.☆62Dec 18, 2022Updated 3 years ago
- All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.☆1,190Jan 29, 2026Updated 2 months ago
- SPDX Merge tool☆51Apr 7, 2026Updated last week
- Template repository for testing CLI features of applications written in Go☆10Nov 14, 2021Updated 4 years ago
- OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure☆1,452Apr 6, 2026Updated last week
- statexec is a versatile command execution tool written in Go that gathers system metrics during the execution of a specified command.☆46Jan 21, 2024Updated 2 years ago
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 3 years ago
- Enrich SBOMs with data from third party services☆224Updated this week
- 🎊 Count resources by kind☆39Aug 2, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Keyless Git signing using Sigstore☆1,079Updated this week
- Helm plugin that identifies the configuration that has drifted from the Helm chart☆82Updated this week
- ☆94Dec 15, 2023Updated 2 years ago
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,472Apr 8, 2026Updated last week
- All our dashboards for Grafana☆26Updated this week
- Support CI generation of SBOMs via golang tooling.☆425Jan 13, 2025Updated last year
- Terrap - a powerful CLI tool that scans your infrastructure and identifies any required changes.☆66Dec 5, 2023Updated 2 years ago