hexa-org / policy-orchestrator
Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.
☆98Updated last month
Related projects ⓘ
Alternatives and complementary repositories for policy-orchestrator
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆70Updated this week
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- sigstore installation walkthrough, local☆56Updated 6 months ago
- Repository for development of IDQL Policy Language☆12Updated last week
- ☆16Updated 5 months ago
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆30Updated 10 months ago
- ☆49Updated this week
- ☆61Updated 3 months ago
- sigstore the hard way!☆110Updated 6 months ago
- A tool to create, transform and attest VEX metadata☆116Updated this week
- ☆227Updated this week
- Runtime security plug to protect user containers☆65Updated this week
- This repository includes cloud security policies for IaC and live resources.☆39Updated 4 months ago
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆57Updated this week
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆35Updated 5 months ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- Artifact Ratification Framework☆225Updated this week
- in-toto is a framework to secure the software supply chain.☆69Updated last week
- Beyond RBAC: Implementing Relation-based Access Control for Kubernetes with OpenFGA☆56Updated 9 months ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Integrates Spiffe and Vault to have secretless authentication☆85Updated 2 weeks ago
- Runtime detection and response for malicious events in Kubernetes workloads☆38Updated 7 months ago
- The Community repository is the place to go for support with OPA and OPA Sub-Projects, like Conftest and Gatekeeper.☆33Updated 2 years ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆56Updated this week
- Scans SBOMs for vulnerabilities with Grype☆79Updated this week
- Go implementation of witness☆26Updated this week
- Kubernetes audit logging, when you don't control the control plane☆65Updated this week
- A specification for signing methods and formats used by Secure Systems Lab projects.☆68Updated 2 months ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆63Updated this week
- Kubewarden website☆10Updated this week