controlplaneio / threat-modelling-zero-trust-talk
☆11Updated 2 years ago
Alternatives and similar repositories for threat-modelling-zero-trust-talk:
Users that are interested in threat-modelling-zero-trust-talk are comparing it to the libraries listed below
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- Slack alert bot for matching Github Audit Events☆10Updated 5 months ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 4 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Kubernetes audit logging, when you don't control the control plane☆74Updated this week
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated 2 years ago
- cloud native software supply chain ☁️🔗☆63Updated 4 years ago
- EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.☆27Updated last week
- Proof of concept that uses cosign and GitHub's in built OIDC for actions to sign container images, providing a proof that what is in the …☆14Updated 2 years ago
- ☆15Updated 2 years ago
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- Ghat is a tool for updating your GitHub actions and Terraform with the latest version of it dependencies and using immutable hashes inste…☆26Updated last week
- A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources☆16Updated this week
- ☆19Updated 7 months ago
- GKE CIS 1.1.0 Benchmark InSpec Profile☆27Updated 3 years ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated 2 years ago
- A Go program to display certificate chains simply and quickly with an easy to remember syntax☆27Updated 6 months ago
- ☆20Updated last year
- ☆14Updated 3 weeks ago
- ☆16Updated 9 months ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- ☆32Updated 5 years ago
- A multi scanner for docker images. It drives Clair, Anchore, Trivy, Snyk, Grype, AWS ECR scans and consolidates the results.☆14Updated last year
- This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)☆62Updated 3 years ago
- Kubernetes Admission Controller for Image Scanning using OPA☆50Updated last year
- A single repo that shows terraform, terragrunt, helm & docker☆19Updated 2 years ago
- vscode extension for tfsec☆30Updated 2 years ago
- ☆16Updated 2 years ago
- AWS Signer Plugin for Notation☆12Updated 3 weeks ago