jetstack / tally
☆14Updated last year
Alternatives and similar repositories for tally:
Users that are interested in tally are comparing it to the libraries listed below
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Trivy plugin for OCI referrers☆23Updated 10 months ago
- Fairwinds Base Image Finder CLI☆34Updated 2 weeks ago
- Scans SBOMs for vulnerabilities with Grype☆79Updated this week
- Check images in your charts for vulnerabilities☆41Updated last year
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆80Updated last week
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated 9 months ago
- sigstore installation walkthrough, local☆57Updated 10 months ago
- Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosign☆11Updated 3 years ago
- An SBOM query language and associated utilities☆54Updated last year
- ☆22Updated 11 months ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- conftest plugin that transforms k8s input object to be compatible with gatekeeper policies☆14Updated last year
- Integrates Spiffe and Vault to have secretless authentication☆88Updated last week
- Kubernetes Admission Controller for Image Scanning using OPA☆50Updated last year
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆61Updated this week
- Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts☆16Updated last week
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Pre-commit git hooks for Open Policy Agent (OPA) and Rego development☆66Updated 3 years ago
- A tool to create, transform and attest VEX metadata☆133Updated this week
- ☆61Updated 8 months ago
- Policy Module: Policy enforcement for your Kubernetes Cluster☆38Updated this week
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆65Updated 3 months ago
- CLI for searching Rego policies☆105Updated 3 years ago
- cloud native software supply chain ☁️🔗☆63Updated 4 years ago
- To manage Docker Content Trust and Notary certificates☆12Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆81Updated this week