crashappsec / chalkLinks
Chalk allows you to follow code from development, through builds and into production.
☆376Updated this week
Alternatives and similar repositories for chalk
Users that are interested in chalk are comparing it to the libraries listed below
Sorting:
- boostsecurityio/poutine☆301Updated 2 weeks ago
- CI/CD Security Analyzer☆659Updated 4 months ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆486Updated last week
- Open-source best practices for protecting a secure, sensible cloud platform☆126Updated 7 months ago
- A security layer for Git repositories☆534Updated last week
- A flexible threat detection platform that simplifies rule management and deployment using K8s CronJob and Helm, but can also run standalo…☆378Updated 8 months ago
- Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build …☆401Updated this week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆810Updated 2 months ago
- Lambda function that streamlines containment of an AWS account compromise☆344Updated last year
- Evaluate source control (GitHub) security posture☆250Updated 2 years ago
- Validate the isolation posture of your container environment.☆287Updated this week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆171Updated 2 months ago
- A multi-vault secret injection tool for safely injecting secrets into app environment☆126Updated 2 weeks ago
- A Software as a Service (SaaS) log collection framework.☆173Updated this week
- Gram is Klarna's own threat model diagramming tool☆320Updated last month
- Documenting your Threat Models with HCL☆431Updated 3 weeks ago
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆398Updated last week
- Open source compliance tool for development platforms.☆286Updated last year
- Flowpipe is a cloud scripting engine. Automation and workflow to connect your clouds to the people, systems and data that matters.☆425Updated 2 weeks ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆149Updated 7 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆172Updated 7 months ago
- A tool to check the security settings of Github Organizations.☆71Updated 2 years ago
- A list of cloud security tools and vendors.☆168Updated 9 months ago
- Awesome secure by default libraries to help you eliminate bug classes!☆694Updated 2 months ago
- Enrich SBOMs with data from third party services☆176Updated 2 months ago
- OpenVEX Specification☆151Updated 3 weeks ago
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆749Updated 6 months ago
- #supply #chain #attack #detection☆527Updated this week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated this week
- A universal SBOM representation in protocol buffers☆289Updated 2 weeks ago