jetstack / paranoia
Inspect certificate authorities in container images
☆230Updated 10 months ago
Alternatives and similar repositories for paranoia:
Users that are interested in paranoia are comparing it to the libraries listed below
- BadRobot - Operator Security Audit Tool☆218Updated this week
- Evaluate source control (GitHub) security posture☆249Updated 2 years ago
- A kubectl plugin to visualize network policies rules.☆95Updated last year
- A collection of reusable Github Actions workflows.☆127Updated 3 weeks ago
- Response Engine for managing threats in your Kubernetes☆150Updated this week
- Add CA certificates into containers☆144Updated 2 weeks ago
- Store and access your secrets the Kubernetes native way with any external KMS.☆176Updated last year
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆198Updated this week
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆159Updated 2 months ago
- sigstore the hard way!☆110Updated 10 months ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- Marvin is a CLI tool that scans a k8s cluster by performing CEL expressions to report potential issues, misconfigurations and vulnerabili…☆179Updated last week
- Artifact Ratification Framework (CNCF Sandbox)☆253Updated this week
- A simple WebUI with latest events from Falco☆117Updated this week
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆80Updated 2 weeks ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆80Updated 2 months ago
- [alpha] Tool to evaluate upgrade confidence for Kubernetes cluster addons☆136Updated 3 weeks ago
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆428Updated 3 weeks ago
- A CLI tool to sign and verify artifacts☆384Updated this week
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆151Updated this week
- KBOM - Kubernetes Bill of Materials☆311Updated 4 months ago
- Kubernetes audit logging, when you don't control the control plane☆71Updated this week
- Runtime security plug to protect user containers☆65Updated 3 weeks ago
- An SBOM query language and associated utilities☆54Updated last year
- Scans SBOMs for vulnerabilities with Grype☆79Updated this week
- Notice: Postee is no longer under active development or maintenance.☆209Updated 2 weeks ago
- ☆232Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆79Updated this week
- Throw a tag at it and it comes back with a checksum.☆112Updated last week