ckotzbauer / vulnerability-operatorLinks
Scans SBOMs for vulnerabilities with Grype
☆85Updated last week
Alternatives and similar repositories for vulnerability-operator
Users that are interested in vulnerability-operator are comparing it to the libraries listed below
Sorting:
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆217Updated last week
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆125Updated 4 years ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Updated last week
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆63Updated 2 weeks ago
- sigstore installation walkthrough, local☆62Updated 2 months ago
- sigstore the hard way!☆118Updated 6 months ago
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆78Updated 3 months ago
- BadRobot - Operator Security Audit Tool☆223Updated last week
- Add CA certificates into containers☆164Updated last week
- Plugin for Helm to integrate the sigstore ecosystem☆67Updated last week
- A kubectl plugin to visualize network policies rules.☆99Updated last year
- Trust Dexter to ensure that all your images are pinned by digest for better security☆31Updated 2 years ago
- A pane of glass between you and your Kubernetes clusters.☆46Updated 2 years ago
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆163Updated 3 weeks ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆68Updated this week
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard) and Kubescape.☆62Updated this week
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆79Updated 2 months ago
- This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)☆63Updated 4 years ago
- A tool to create, transform and attest VEX metadata☆172Updated last week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆106Updated this week
- Kubernetes audit logging, when you don't control the control plane☆90Updated this week
- ☆49Updated 3 years ago
- ☆35Updated 4 years ago
- Kubernetes Operator based on the open-source container vulnerability scanner Trivy.☆49Updated 7 months ago
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆71Updated last week
- Kubernetes Admission Controller for Image Scanning using OPA☆50Updated 2 years ago
- KubeTrivyExporter is Prometheus Exporter that collects all vulnerabilities detected by aquasecurity/trivy in the kubernetes cluster.☆50Updated 2 years ago
- Response Engine for managing threats in your Kubernetes☆189Updated 2 months ago
- Enabling Software Supply Chain Security Capabilities in ArgoCD☆92Updated 3 years ago