gatecheckdev / gatecheck

Related projects ⓘ

Alternatives and complementary repositories for gatecheck

• defenseunicorns / lula
  The Compliance Validator
  ☆152Updated this week
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆416Updated this week
• defenseunicorns / uds-cli
  ☆26Updated this week
• chainguard-dev / incert
  Add CA certificates into containers
  ☆135Updated last week
• defenseunicorns / pepr
  Type safe K8s middleware for humans
  ☆210Updated this week
• defenseunicorns / uds-core
  A FOSS secure runtime platform for mission-critical capabilities
  ☆52Updated this week
• buildsec / frsca
  ☆228Updated this week
• controlplaneio / collie
  OSCAL and Kyverno Policy Demo for AWS
  ☆12Updated last year
• DoD-Platform-One / bigbang
  BigBang the product
  ☆168Updated this week
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆73Updated this week
• anchore / grant
  Search an SBOM for licenses and the packages they belong to
  ☆70Updated last week
• defenseunicorns / Defense-Unicorns-Culture
  This repo is a living document of company culture and values.
  ☆17Updated 2 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆221Updated 3 months ago
• kubernetes-sigs / bom
  A utility to generate SPDX-compliant Bill of Materials manifests
  ☆344Updated last week
• defenseunicorns / tadpole
  The fastest way to get started with LeapfrogAI
  ☆19Updated 9 months ago
• sse-secure-systems / connaisseur
  An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
  ☆443Updated this week
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆215Updated this week
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆139Updated 4 months ago
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆118Updated last week
• suzuki-shunsuke / tfprovidercheck
  CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…
  ☆76Updated this week
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆249Updated last year
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆87Updated this week
• defenseunicorns / delivery-aws-iac
  ☆16Updated this week
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆401Updated 2 months ago
• defenseunicorns / maru-runner
  The Unicorn Task Runner
  ☆10Updated this week
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆168Updated this week
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆66Updated 11 months ago
• gittuf / gittuf
  A security layer for Git repositories
  ☆465Updated this week
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆228Updated 6 months ago