Alternatives and similar repositories for gatecheck:

Users that are interested in gatecheck are comparing it to the libraries listed below

• defenseunicorns / lula
  The Compliance Validator
  ☆159Updated this week
• controlplaneio / collie
  OSCAL and Kyverno Policy Demo for AWS
  ☆12Updated last year
• defenseunicorns / pepr
  Type safe K8s middleware for humans
  ☆219Updated this week
• defenseunicorns / uds-cli
  ☆27Updated this week
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆101Updated this week
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆78Updated this week
• chainguard-dev / digestabot
  Github Action to automatically update digests for container images.
  ☆52Updated 2 months ago
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆423Updated this week
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆126Updated this week
• suzuki-shunsuke / tfprovidercheck
  CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…
  ☆78Updated this week
• defenseunicorns / Defense-Unicorns-Culture
  This repo is a living document of company culture and values.
  ☆18Updated 2 weeks ago
• defenseunicorns / go-oscal
  Repository for the generation of OSCAL data types
  ☆21Updated this week
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆95Updated this week
• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆148Updated this week
• kubernetes-sigs / bom
  A utility to generate SPDX-compliant Bill of Materials manifests
  ☆361Updated this week
• anchore / grant
  Search an SBOM for licenses and the packages they belong to
  ☆71Updated this week
• defenseunicorns / uds-core
  A FOSS secure runtime platform for mission-critical capabilities
  ☆61Updated this week
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated last year
• jetstack / dependency-track-exporter
  ☆23Updated 5 months ago
• defenseunicorns / maru-runner
  The Unicorn Task Runner
  ☆12Updated this week
• chainguard-dev / actions
  A collection of reusable Github Actions workflows.
  ☆122Updated last week
• guacsec / guac-visualizer
  Visualizer for GUAC
  ☆27Updated 2 weeks ago
• wiz-sec / charts
  ☆38Updated this week
• DoD-Platform-One / bigbang
  BigBang the product
  ☆173Updated this week
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆216Updated last week
• cloud-native-security-controls / controls-catalog
  ☆16Updated 8 months ago
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆229Updated 8 months ago
• np-guard / cluster-topology-analyzer
  A static code analyzer to generate network connection topology for micro-service applications
  ☆16Updated this week