cloud-gov / caulkingLinks
Prevent leaks with gitleaks, and use tests to validate
☆32Updated 2 months ago
Alternatives and similar repositories for caulking
Users that are interested in caulking are comparing it to the libraries listed below
Sorting:
- Automate the creation of a System Security Plan (SSP)☆39Updated last month
- A tool to check the security settings of Github Organizations.☆72Updated 2 years ago
- Compare vulnerability scanners results (to make them better!)☆22Updated this week
- Interrogate your GitHub resources with the help of the world's greatest detectives: Powerpipe + Steampipe + Sherlock.☆40Updated 9 months ago
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 6 months ago
- Unit testing framework for test driven security of AWS, GCP, Heroku and more.☆107Updated last year
- A place for the InfoSec community to share and celebrate real stories of organizations successfully using SBOMs (and other bills of mater…☆42Updated last year
- An access-limiting stateless GitHub API Proxy☆149Updated 2 years ago
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- NIST OSCAL SDK and CLI☆38Updated 5 years ago
- Darkbit Cloud Security Tools☆25Updated 4 years ago
- Github Action implementation of SLSA Provenance Generation☆49Updated this week
- Technical Advisory Council☆128Updated this week
- An SBOM query language and associated utilities☆54Updated last year
- Scans every git push to your Github organisations to find unwanted secrets.☆87Updated 3 months ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- Generate SBOMs with gh CLI☆189Updated 2 months ago
- YAML schema, examples, and validators for OpenControl format.☆74Updated 6 years ago
- Open source tool for processing OSCAL based FedRAMP SSPs☆42Updated 9 months ago
- Supply Chain Integrity Model☆105Updated 2 years ago
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆42Updated 2 years ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆125Updated 6 months ago
- A Security Results Viewer for the web with storage, teams and history☆35Updated 2 years ago
- EXPERIMENTAL: a template builder for FedRAMP System Security Plans☆39Updated 5 years ago
- Certbot container that stores its configuration in an AWS S3 bucket☆15Updated 3 weeks ago
- GitHub Secret Scanning Auto Remediator (GSSAR)☆45Updated last week
- List of vendors that do not allow IMDSv2 enforcement☆143Updated last year
- This repository contains a sample script which can be used to enable security vulnerability alerts in all of the repositories in a given …☆80Updated 9 months ago
- Cloud multi-account metadata management tool.☆91Updated 4 years ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago