Alternatives and similar repositories for chalk

Users that are interested in chalk are comparing it to the libraries listed below

• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆306Updated 2 weeks ago
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆488Updated last week
• xeol-io / xeol
  A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
  ☆400Updated last week
• cybrota / whispr
  A multi-vault secret injection tool for safely injecting secrets into app environment
  ☆127Updated 2 weeks ago
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆659Updated 4 months ago
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆319Updated this week
• Legit-Labs / legitify
  Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
  ☆813Updated 3 months ago
• secengjeff / awskillswitch
  Lambda function that streamlines containment of an AWS account compromise
  ☆345Updated last year
• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆291Updated 2 weeks ago
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆174Updated last week
• turbot / powerpipe
  Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build …
  ☆409Updated this week
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆432Updated last month
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆149Updated 7 months ago
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆126Updated 8 months ago
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆110Updated last week
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆70Updated 2 weeks ago
• tldrsec / awesome-secure-defaults
  Awesome secure by default libraries to help you eliminate bug classes!
  ☆697Updated 2 months ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious npm and PyPI packages
  ☆150Updated last week
• gittuf / gittuf
  A security layer for Git repositories
  ☆535Updated this week
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆250Updated 2 years ago
• openvex / spec
  OpenVEX Specification
  ☆155Updated last month
• ccbrown / cloud-snitch
  Map visualization and firewall for AWS activity, inspired by Little Snitch for macOS.
  ☆352Updated 2 weeks ago
• protobom / protobom
  A universal SBOM representation in protocol buffers
  ☆293Updated this week
• turbot / flowpipe
  Flowpipe is a cloud scripting engine. Automation and workflow to connect your clouds to the people, systems and data that matters.
  ☆429Updated this week
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆169Updated 10 months ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆172Updated 7 months ago
• MaibornWolff / SecObserve
  SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…
  ☆143Updated this week
• turbot / tailpipe
  select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, r…
  ☆456Updated this week
• chainguard-dev / malcontent
  #supply #chain #attack #detection
  ☆530Updated this week