developer-guy / container-image-sign-and-verify-with-cosign-and-opa
This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
☆62Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for container-image-sign-and-verify-with-cosign-and-opa
- Detect intrusions that happened in your Kubernetes cluster through audit logs using Falco☆63Updated 3 years ago
- OPA Gatekeeper vs Kyverno☆62Updated 3 years ago
- ☆35Updated 3 years ago
- Enabling Software Supply Chain Security Capabilities in ArgoCD☆80Updated 2 years ago
- sigstore the hard way!☆110Updated 6 months ago
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆76Updated 7 months ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆125Updated 2 years ago
- ☆19Updated 3 months ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆56Updated last week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated this week
- Automatically self-serviced applications for ArgoCD.☆24Updated 2 years ago
- Cloud Native Security Hub - Security Resources☆54Updated 4 years ago
- Plugin for Helm to integrate the sigstore ecosystem☆60Updated last week
- 🔍 Rekor transparency log monitoring and alerting☆27Updated last year
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆48Updated last week
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆79Updated last week
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated last year
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆63Updated this week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆56Updated this week
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- ☆22Updated 7 months ago
- Kubernetes Fury Distribution OPA Core Module: Policy enforcement for your Kubernetes Cluster☆38Updated 2 weeks ago
- pspmigrator is a tool to migrate from PSP to PSA☆29Updated last year
- Kubernetes Native, Runtime Container Image Scanning☆39Updated 2 years ago
- An application that regularly scans all containers in a Kubernetes cluster for vulnerabilities☆50Updated last year
- [alpha] Controller to override image sources in the event that an image cannot be pulled.☆115Updated 2 weeks ago
- A pane of glass between you and your Kubernetes clusters.☆45Updated 10 months ago
- K8s-shredder - an opinionated way of parking in Kubernetes☆74Updated last week
- ☆27Updated 2 years ago