developer-guy / container-image-sign-and-verify-with-cosign-and-opaLinks
This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
☆62Updated 3 years ago
Alternatives and similar repositories for container-image-sign-and-verify-with-cosign-and-opa
Users that are interested in container-image-sign-and-verify-with-cosign-and-opa are comparing it to the libraries listed below
Sorting:
- Detect intrusions that happened in your Kubernetes cluster through audit logs using Falco☆63Updated 4 years ago
- sigstore the hard way!☆112Updated last year
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- OPA Gatekeeper vs Kyverno☆61Updated 3 years ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 2 weeks ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated 2 weeks ago
- ☆35Updated 3 years ago
- Automatically self-serviced applications for ArgoCD.☆24Updated 3 years ago
- An example of a kubernetes cluster appropriate for a startup company☆60Updated 2 years ago
- ☆27Updated 2 years ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated this week
- Enabling Software Supply Chain Security Capabilities in ArgoCD☆87Updated 2 years ago
- [alpha] Controller to override image sources in the event that an image cannot be pulled.☆119Updated 3 weeks ago
- An application that regularly scans all containers in a Kubernetes cluster for vulnerabilities☆50Updated 2 years ago
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆78Updated last year
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆63Updated this week
- ☆22Updated last year
- Kubernetes Container Registry☆116Updated 3 years ago
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- Octant plugin for viewing Starboard security information☆57Updated 3 years ago
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆65Updated this week
- A Trivy plugin that scans the images of a kubernetes resource☆25Updated last year
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆55Updated last month
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated 2 years ago
- Scout for alarming issues across your Kubernetes clusters☆124Updated 3 years ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆84Updated 2 weeks ago
- A tool to inspect pods in kubernetes☆74Updated 3 years ago
- Kubernetes resources hierarchy parsing tool☆67Updated 2 years ago
- Tracking Kubernetes Operators out in the wild.☆31Updated 7 months ago