Runtime security plug to protect user containers
☆67Mar 3, 2026Updated this week
Alternatives and similar repositories for security-guard
Users that are interested in security-guard are comparing it to the libraries listed below
Sorting:
- Kilt is a project that defines how to inject foreign apps into containers☆13Dec 15, 2023Updated 2 years ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆88Jan 28, 2024Updated 2 years ago
- ☆22Dec 17, 2025Updated 2 months ago
- Generate Software Bill of Materials (SBOM) from virtual machine disk images, without booting the VM.☆17Feb 20, 2026Updated last week
- an experimental curl wrapper with placeholder, bookmark and environment powers just like postman☆18Feb 3, 2026Updated last month
- An query language and interactive tooling to work with SBOM data.☆15Oct 7, 2024Updated last year
- SLSA level 3 action☆11Apr 26, 2024Updated last year
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆79Dec 4, 2025Updated 3 months ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆32Aug 29, 2023Updated 2 years ago
- iterating over YAML!☆13Feb 9, 2026Updated 3 weeks ago
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Dec 21, 2022Updated 3 years ago
- debug IAM roles for service accounts☆65Updated this week
- ☆30Jan 13, 2026Updated last month
- Collection of OPA Gatekeeper policies that can be used in your Kubernetes cluster.☆13Jun 20, 2023Updated 2 years ago
- ☆55Dec 18, 2023Updated 2 years ago
- Policies that are to be enforced by GateKeeper for the Cloud Native Platform☆16Feb 1, 2024Updated 2 years ago
- ORAS (OCI registry as storage) container storage interface☆17Jun 5, 2024Updated last year
- ☆32Dec 1, 2019Updated 6 years ago
- A place for policy work group related proposals and prototypes.☆65May 21, 2025Updated 9 months ago
- cdk8s config management plugins support for ArgoCD☆18May 3, 2024Updated last year
- Artifact Ratification Framework (CNCF Sandbox)☆284Feb 19, 2026Updated last week
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Mar 1, 2024Updated 2 years ago
- A curated list of Falco related tools, frameworks, blogs, podcasts, and articles☆202Jul 28, 2021Updated 4 years ago
- sigstore the hard way!☆118Aug 6, 2025Updated 6 months ago
- Clean That Cloud!☆19Feb 25, 2021Updated 5 years ago
- ☆70Feb 23, 2026Updated last week
- Archived: Use github.com/stolostron/gatekeeper-operator☆39Sep 26, 2023Updated 2 years ago
- A multi-tenancy focused solution, that facilitates collection of telemetry data from Kubernetes workloads transparently.☆49Feb 26, 2026Updated last week
- /ˈheɪvənə/ - Think of it as a swiss army knife for Kubernetes tasks☆333Updated this week
- OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure☆1,450Updated this week
- ☆26Aug 31, 2023Updated 2 years ago
- Trivy plugin for OCI referrers☆23May 13, 2024Updated last year
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 2 years ago
- Superseded by https://github.com/aquasecurity/trivy-operator☆1,373Feb 3, 2026Updated last month
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Feb 25, 2026Updated last week
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆350Mar 21, 2025Updated 11 months ago
- Kubernetes RBAC static analysis & visualisation tool☆739Feb 13, 2026Updated 2 weeks ago
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆60Updated this week
- Watch your in cluster Kubernetes manifests for OPA policy violations and export them as Prometheus metrics☆50Jul 4, 2023Updated 2 years ago