finos / common-cloud-controls
FINOS Common Cloud Controls
☆45Updated this week
Alternatives and similar repositories for common-cloud-controls:
Users that are interested in common-cloud-controls are comparing it to the libraries listed below
- ☆81Updated this week
- Repository for on-going work as part of the AIBOM Tiger Team effort.☆20Updated 7 months ago
- ☆16Updated 11 months ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆182Updated this week
- The Compliance Validator☆173Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆78Updated last week
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆76Updated 6 months ago
- Agile authoring tutorial and repo set-up tooling☆18Updated 7 months ago
- Various deployments of the OSCAL editor☆46Updated 8 months ago
- ☆16Updated 7 months ago
- Check SPDX SBOM for NTIA minimum elements☆61Updated 3 weeks ago
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆163Updated this week
- ☆100Updated 6 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- Scan GitHub Actions Workflow logs for IOCs☆15Updated this week
- Visualizer for GUAC☆29Updated last month
- Open Source Software Secure Supply Chain Framework☆236Updated 2 years ago
- A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…☆58Updated last year
- Demo setup for compliance-trestle☆33Updated last month
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆171Updated 5 months ago
- A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…☆40Updated 3 weeks ago
- An initial OpenAPI definition of an OSCAL REST API.☆39Updated 7 months ago
- ☆100Updated 3 weeks ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆48Updated last month
- OpenVEX Specification☆145Updated 3 weeks ago
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆85Updated this week
- GitHub action to scan container images with Palo Alto Networks' Prisma Cloud☆57Updated 3 weeks ago
- OWASP Foundation Web Respository☆55Updated 2 years ago
- Create a space where expertise can be identified and implemented to help the fintech ecosystem understand and adopt new technologies thro…☆25Updated 2 weeks ago
- Generate a score for your sbom to understand if it will actually be useful.☆229Updated 8 months ago