crashappsec / chalkLinks
Chalk allows you to follow code from development, through builds and into production.
☆416Updated last week
Alternatives and similar repositories for chalk
Users that are interested in chalk are comparing it to the libraries listed below
Sorting:
- CI/CD Security Analyzer☆728Updated 10 months ago
- A multi-vault secret injection tool for safely injecting secrets into app environment☆131Updated last week
- A Software as a Service (SaaS) log collection framework.☆180Updated 3 weeks ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆511Updated last week
- boostsecurityio/poutine☆354Updated last month
- Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build …☆471Updated this week
- ☆75Updated 2 months ago
- A list of cloud security tools and vendors.☆180Updated last year
- Open-source best practices for protecting a secure, sensible cloud platform☆129Updated last year
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆826Updated 9 months ago
- select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, r…☆532Updated 3 weeks ago
- A flexible threat detection platform that simplifies rule management and deployment using K8s CronJob and Helm, but can also run standalo…☆384Updated last year
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆171Updated 11 months ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆210Updated this week
- Lambda function that streamlines containment of an AWS account compromise☆345Updated 2 years ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆158Updated last year
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆125Updated 3 months ago
- Gram is Klarna's own threat model diagramming tool☆330Updated 2 weeks ago
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆424Updated last week
- Validate the isolation posture of your container environment.☆309Updated 2 weeks ago
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆200Updated this week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆176Updated 8 months ago
- Documenting your Threat Models with HCL☆442Updated last week
- ForgeMT is a secure, scalable GitHub Actions runner platform for ephemeral workloads. Designed for multi-tenant environments, it automate…☆197Updated this week
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆488Updated 6 months ago
- cloudgrep is grep for cloud storage☆327Updated 10 months ago
- Software Supply Chain Security Platform☆368Updated this week
- A universal SBOM representation in protocol buffers☆314Updated 2 weeks ago
- AWS honey token manager☆89Updated last year
- A security layer for Git repositories☆566Updated last week