☆16May 15, 2024Updated last year
Alternatives and similar repositories for controls-catalog
Users that are interested in controls-catalog are comparing it to the libraries listed below
Sorting:
- Supply Chain Query Tool☆13May 25, 2022Updated 3 years ago
- A CLI tool for creating secure by design/default source repos.☆28Jul 29, 2024Updated last year
- 🥑 Inspect and understand an organization's software supply chain using AI to enable stakeholders to make actionable decisions about soft…☆22Apr 15, 2024Updated last year
- An http proxy for reproducibility.☆19Jan 10, 2023Updated 3 years ago
- Visualizer for GUAC☆30Updated this week
- Threat Hunting at Scale: Auditing Thousands of Clusters With Falco + Fluent☆12Aug 13, 2022Updated 3 years ago
- A functional type system for policy inspection, audit and enforcement.☆14Aug 17, 2023Updated 2 years ago
- Draft Measures Working Content Repository☆10Apr 15, 2021Updated 4 years ago
- A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.☆145Mar 13, 2026Updated last week
- ☆22Apr 6, 2024Updated last year
- ☆102Sep 27, 2024Updated last year
- Demo setup for compliance-trestle☆37Jan 28, 2026Updated last month
- A curated list of awesome SPIFFE and SPIRE related things☆15Jul 29, 2024Updated last year
- The Compliance Validator☆184Mar 15, 2026Updated last week
- Sigstore user stories☆31Aug 25, 2023Updated 2 years ago
- Scripts to import OSCAL example content into the Neo4J graph database☆33Jan 28, 2023Updated 3 years ago
- Kubewarden website☆12Mar 13, 2026Updated last week
- Terraform provider for ScyllaDB Cloud.☆11Updated this week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆31Nov 8, 2023Updated 2 years ago
- OSCAL Content Authoring Tool☆13Apr 3, 2023Updated 2 years ago
- [EXPERIMENTAL] Kubernetes Operator for Image Assurance☆20Aug 11, 2020Updated 5 years ago
- ☆11Jun 23, 2022Updated 3 years ago
- An Evil OIDC Server☆53Oct 19, 2022Updated 3 years ago
- OSCAL reusable component definitions library☆16Mar 14, 2025Updated last year
- ☆14Apr 14, 2023Updated 2 years ago
- ☆20Apr 10, 2025Updated 11 months ago
- silence negligible CVE alerts using LLM☆65Mar 2, 2026Updated 2 weeks ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆239Updated this week
- A nomad setup used as an alternative to docker-compose☆21Nov 1, 2021Updated 4 years ago
- ☆18Jul 14, 2021Updated 4 years ago
- Infrastructure-as-code for a serverless knowledge base using Amazon Bedrock, Aurora PostgreSQL (with pgvector), Lambda, and S3. This setu…☆19Mar 23, 2025Updated 11 months ago
- A data access control framework for Open Policy Agent☆37Jun 12, 2024Updated last year
- Automatically exported from code.google.com/p/codeuml☆12Apr 23, 2015Updated 10 years ago
- AI Bill of Materials through source code scanning☆36Mar 13, 2026Updated last week
- Specification for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆26Nov 17, 2025Updated 4 months ago
- Harness the security superpowers of your cloud asset inventory☆11Sep 22, 2024Updated last year
- TFLint ruleset for Azure Verified Modules☆16Feb 6, 2026Updated last month
- AWS audits, without screenshots☆29Updated this week
- Use this template to start making your own Inferno Test Kit☆16Jul 24, 2025Updated 7 months ago