jetstack / paranoiaLinks
Inspect certificate authorities in container images
☆237Updated this week
Alternatives and similar repositories for paranoia
Users that are interested in paranoia are comparing it to the libraries listed below
Sorting:
- BadRobot - Operator Security Audit Tool☆223Updated this week
- Add CA certificates into containers☆157Updated last week
- A collection of reusable Github Actions workflows.☆142Updated this week
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆207Updated last week
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆69Updated 3 weeks ago
- Scans SBOMs for vulnerabilities with Grype☆85Updated last week
- A kubectl plugin to visualize network policies rules.☆97Updated last year
- Kubernetes audit logging, when you don't control the control plane☆85Updated this week
- sigstore the hard way!☆117Updated last month
- Runtime security plug to protect user containers☆66Updated 2 weeks ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆109Updated 9 months ago
- ForgeMT is a secure, scalable GitHub Actions runner platform for ephemeral workloads. Designed for multi-tenant environments, it automate…☆191Updated this week
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆89Updated last week
- Store and access your secrets the Kubernetes native way with any external KMS.☆182Updated 2 years ago
- Response Engine for managing threats in your Kubernetes☆170Updated last week
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆125Updated 3 years ago
- Style guide for Rego☆202Updated last week
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆163Updated 2 months ago
- An open source, cloud-native security to protect everything from build to runtime☆319Updated this week
- A CLI tool to sign and verify artifacts☆430Updated 2 weeks ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Updated last month
- Vulnerability scanning just got lazier☆297Updated last week
- Artifact Ratification Framework (CNCF Sandbox)☆279Updated this week
- KBOM - Kubernetes Bill of Materials☆320Updated 2 months ago
- CLI for building OPA policies into OCI images☆245Updated last month
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆56Updated this week
- An SBOM query language and associated utilities☆54Updated last year
- Marvin is a CLI tool that scans a k8s cluster by performing CEL expressions to report potential issues, misconfigurations and vulnerabili…☆198Updated 6 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year