Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
☆242Apr 11, 2026Updated 3 weeks ago
Alternatives and similar repositories for sig-security
Users that are interested in sig-security are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A place for policy work group related proposals and prototypes.☆65May 21, 2025Updated 11 months ago
- ☆16May 15, 2024Updated last year
- 🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!☆2,267Dec 8, 2025Updated 5 months ago
- ☆36Jan 4, 2026Updated 4 months ago
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆352Mar 21, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆46May 12, 2025Updated 11 months ago
- The Kubernetes Security Profiles Operator☆842Updated this week
- Github Action for setting up Carvel apps (ytt, kbld, kapp, kctrl, kwt, imgpkg and vendir)☆17Apr 27, 2026Updated last week
- Integrity Shield is a tool for built-in preventive integrity control for regulated cloud workloads. It provides signature-based assurance…☆17Sep 22, 2022Updated 3 years ago
- Kubesonde: network policy testing and verification in K8s☆16Apr 27, 2026Updated last week
- ☆18Apr 21, 2026Updated 2 weeks ago
- Carvel Terraform provider with resources for ytt and kapp to template and deploy to Kubernetes☆45Sep 26, 2023Updated 2 years ago
- Bits of Terraform that you can use to do bad things in CI/CD pipelines that run Terraform☆10Nov 10, 2020Updated 5 years ago
- Quickstart to Cilium☆17Oct 1, 2025Updated 7 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- AppArmor and Seccomp profiles for Docker images☆14Dec 9, 2025Updated 5 months ago
- Unified Policy as Code☆7,726Updated this week
- Docker images for KinD based on Amazon EKS-D☆11Aug 23, 2021Updated 4 years ago
- 🐊 Policy Controller for Kubernetes☆4,205Apr 28, 2026Updated last week
- ☆23Mar 13, 2023Updated 3 years ago
- Interfaces and implementations for building Kubernetes releases.☆20Apr 23, 2026Updated 2 weeks ago
- Threat Hunting at Scale: Auditing Thousands of Clusters With Falco + Fluent☆12Aug 13, 2022Updated 3 years ago
- ☆15Nov 14, 2018Updated 7 years ago
- Service Control Policies that have been Latacora recommended all wrapped up in terraform that is easy to attach to an OU.☆27May 24, 2024Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A walkthrough of how a Kubernetes Pod can be exploited by a hacker☆11Aug 29, 2023Updated 2 years ago
- Release tooling for KubeBuilder projects.☆20Jul 6, 2025Updated 10 months ago
- multi-cluster gateway controller, manages multi-cluster gateways based on gateway api and policy attachment☆11Dec 11, 2024Updated last year
- Kubernetes Security Process and Security Committee docs☆177Apr 27, 2026Updated last week
- Kyverno Design Proposals☆19Jan 2, 2026Updated 4 months ago
- Runs checks to see if an EKS cluster follows EKS Best Practices.☆953Apr 26, 2026Updated last week
- A curated list for Awesome Kubernetes Security resources☆1,999Apr 25, 2026Updated 2 weeks ago
- A curated list of awesome Common Expression Language (CEL) related resources. Inspired by awesome lists around the world 🕶️☆19Aug 3, 2023Updated 2 years ago
- Kubernetes Pod Security Standards implementation - https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/2579-psp-replacem…☆102Updated this week
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆89Jan 28, 2024Updated 2 years ago
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆34Updated this week
- Kubernetes Unhinged Shell 😎☆46Oct 8, 2022Updated 3 years ago
- Vulnerable Terraform Projects - Fork of https://github.com/bridgecrewio/terragoat☆17Apr 23, 2024Updated 2 years ago
- Kubernetes focused container assessment and context discovery tool for penetration testing☆480Nov 7, 2025Updated 6 months ago
- Security risk analysis for Kubernetes resources☆1,451Updated this week
- How to build your own policy engine☆14Jul 24, 2022Updated 3 years ago