lirlia / prel
prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.
☆39Updated last week
Alternatives and similar repositories for prel:
Users that are interested in prel are comparing it to the libraries listed below
- HashiCorp-relevant rules for the Semgrep code analysis tool☆40Updated last year
- ☆53Updated 2 weeks ago
- A Golang program to rotate AWS & GCP account keys☆65Updated last month
- Compares and analyzes GCP IAM roles.☆77Updated last month
- Semgrep-based Policy Controller for Kubernetes☆47Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆82Updated 3 months ago
- ☆61Updated last week
- Unauthenticated enumeration of AWS IAM Roles.☆23Updated 3 months ago
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes☆64Updated last week
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆30Updated 6 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆92Updated last week
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated last year
- AWS honey token manager☆87Updated 8 months ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆85Updated this week
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆53Updated 2 months ago
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- ☆70Updated 2 months ago
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Updated 11 months ago
- ☆112Updated 3 months ago
- Protect against subdomain takeover☆93Updated 10 months ago
- A Terraform module that makes it a snap to opt out of all AWS AI/ML data harvesting.☆30Updated last year
- ☆14Updated 2 years ago
- ☆29Updated 5 months ago
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆36Updated last year
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Updated 3 months ago
- Kubernetes audit logging, when you don't control the control plane☆73Updated last week
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- ☆48Updated 5 months ago
- A security tool designed to help review merged code changes to open source maintained repositories via LLM assisted review to safeguard a…☆30Updated 5 months ago
- ☆39Updated 5 months ago