falcosecurity / falco-actionsLinks
Run Falco in a GitHub Actions to detect suspicious behavior in your CI/CD
☆37Updated this week
Alternatives and similar repositories for falco-actions
Users that are interested in falco-actions are comparing it to the libraries listed below
Sorting:
- Kubernetes audit logging, when you don't control the control plane☆81Updated this week
- ☆52Updated this week
- (d)ocker(f)ile (c)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆65Updated this week
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated last week
- Response Engine for managing threats in your Kubernetes☆160Updated this week
- Falco plugins registry☆96Updated this week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆98Updated 5 months ago
- Github Action to automatically update digests for container images.☆60Updated 3 weeks ago
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆48Updated this week
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆82Updated last month
- ☆19Updated last week
- This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in G…☆1Updated 7 months ago
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆23Updated 5 months ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated last week
- A collection of reusable Github Actions workflows.☆132Updated this week
- Runtime detection and response for malicious events in Kubernetes workloads☆45Updated last year
- Administrative tooling for Falco☆105Updated this week
- Scans SBOMs for vulnerabilities with Grype☆82Updated last week
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆128Updated last month
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆39Updated 9 months ago
- A pane of glass between you and your Kubernetes clusters.☆45Updated last year
- An SBOM query language and associated utilities☆54Updated last year
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated this week
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆55Updated last month
- BadRobot - Operator Security Audit Tool☆220Updated this week
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆50Updated last year
- Enterprise Distribution for Flux CD☆75Updated this week
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆44Updated 2 months ago