developer-guy / container-image-sign-and-verify-with-cosign-and-opa
This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
☆62Updated 3 years ago
Alternatives and similar repositories for container-image-sign-and-verify-with-cosign-and-opa:
Users that are interested in container-image-sign-and-verify-with-cosign-and-opa are comparing it to the libraries listed below
- Detect intrusions that happened in your Kubernetes cluster through audit logs using Falco☆63Updated 3 years ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- sigstore the hard way!☆111Updated 11 months ago
- 🔍 Rekor transparency log monitoring and alerting☆27Updated last year
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- ☆35Updated 3 years ago
- Octant plugin for viewing Starboard security information☆57Updated 3 years ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 2 weeks ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆80Updated last week
- Cloud Native Security Hub - Security Resources☆54Updated 5 years ago
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆78Updated last year
- Scans SBOMs for vulnerabilities with Grype☆80Updated this week
- ☆20Updated 8 months ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆59Updated last week
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated last week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Enabling Software Supply Chain Security Capabilities in ArgoCD☆85Updated 2 years ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆62Updated this week
- An example of a kubernetes cluster appropriate for a startup company☆60Updated 2 years ago
- OPA Gatekeeper vs Kyverno☆61Updated 3 years ago
- Security risk analysis for Kubernetes resources☆74Updated 3 months ago
- Scout for alarming issues across your Kubernetes clusters☆122Updated 3 years ago
- An application that regularly scans all containers in a Kubernetes cluster for vulnerabilities☆50Updated last year
- [alpha] Controller to override image sources in the event that an image cannot be pulled.☆116Updated last month
- A collection of RBAC recipes and tips & tricks☆44Updated 5 years ago
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆55Updated this week
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Example consumer of the GitOps Toolkit Source APIs☆40Updated last week
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated 2 years ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated 10 months ago