jetstack / paranoiaLinks
Inspect certificate authorities in container images
☆234Updated this week
Alternatives and similar repositories for paranoia
Users that are interested in paranoia are comparing it to the libraries listed below
Sorting:
- BadRobot - Operator Security Audit Tool☆220Updated last week
- Store and access your secrets the Kubernetes native way with any external KMS.☆182Updated last year
- A kubectl plugin to visualize network policies rules.☆96Updated last year
- Add CA certificates into containers☆150Updated this week
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆202Updated this week
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆163Updated this week
- Evaluate source control (GitHub) security posture☆250Updated 2 years ago
- A collection of reusable Github Actions workflows.☆133Updated this week
- Artifact Ratification Framework (CNCF Sandbox)☆266Updated this week
- sigstore the hard way!☆113Updated last year
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Scans SBOMs for vulnerabilities with Grype☆82Updated this week
- Response Engine for managing threats in your Kubernetes☆162Updated this week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆100Updated 5 months ago
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated this week
- Marvin is a CLI tool that scans a k8s cluster by performing CEL expressions to report potential issues, misconfigurations and vulnerabili…☆183Updated 3 months ago
- CLI for building OPA policies into OCI images☆236Updated last month
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆84Updated last week
- An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster☆457Updated this week
- Notice: Postee is no longer under active development or maintenance.☆211Updated 2 weeks ago
- A simple WebUI with latest events from Falco☆121Updated 2 months ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆49Updated last week
- ☆237Updated this week
- Trim 📏 your KUBECONFIG automatically☆118Updated 8 months ago
- KBOM - Kubernetes Bill of Materials☆315Updated 3 months ago
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆133Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆97Updated last week
- Style guide for Rego☆200Updated 3 months ago
- Runtime security plug to protect user containers☆65Updated this week