kubearmor / policy-templatesLinks
Community curated list of System and Network policy templates for the KubeArmor and Cilium
☆49Updated last month
Alternatives and similar repositories for policy-templates
Users that are interested in policy-templates are comparing it to the libraries listed below
Sorting:
- Falco plugins registry☆104Updated this week
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Updated 2 months ago
- Response Engine for managing threats in your Kubernetes☆180Updated last week
- A place for policy work group related proposals and prototypes.☆66Updated 5 months ago
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆148Updated 3 weeks ago
- Runtime detection and response for malicious events in Kubernetes workloads☆46Updated last year
- Kyverno for any JSON!☆88Updated 10 months ago
- Scans SBOMs for vulnerabilities with Grype☆85Updated last week
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆67Updated last week
- sigstore the hard way!☆116Updated 3 months ago
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated this week
- Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data e…☆34Updated 5 months ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆110Updated 5 months ago
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆128Updated last week
- A simple WebUI with latest events from Falco☆129Updated 3 weeks ago
- Administrative tooling for Falco☆113Updated this week
- BadRobot - Operator Security Audit Tool☆223Updated 3 weeks ago
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆78Updated 2 weeks ago
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆79Updated last year
- A tool to create, transform and attest VEX metadata☆164Updated last week
- Kubernetes audit logging, when you don't control the control plane☆88Updated this week
- A kubectl plugin to visualize network policies rules.☆97Updated last year
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated last week
- Helm charts for sigstore project☆82Updated this week
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆83Updated last week
- Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…☆26Updated 2 years ago
- KBOM - Kubernetes Bill of Materials☆321Updated 3 months ago
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆208Updated last week
- Intent driven security automation framework☆26Updated 2 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year