open-policy-agent / gatekeeper-external-data-provider
A template repository for building external data providers for Gatekeeper.
โ9Updated last year
Related projects: โ
- ๐ฎ โ๏ธ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sigโฆโ75Updated 5 months ago
- Generate K8s RBAC policies based on e2e test runsโ28Updated 3 years ago
- Enterprise Distribution for Flux CDโ59Updated this week
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReportsโ55Updated this week
- ๐ Rekor transparency log monitoring and alertingโ26Updated 11 months ago
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controlsโฆโ44Updated 4 months ago
- K8s-shredder - an opinionated way of parking in Kubernetesโ74Updated this week
- Plugin for Helm to integrate the sigstore ecosystemโ59Updated 2 weeks ago
- Transparenty Immutable Container Image Tagsโ19Updated last year
- A pane of glass between you and your Kubernetes clusters.โ44Updated 8 months ago
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable suppโฆโ123Updated last week
- kubectl plugin for signing Kubernetes manifest YAML files with sigstoreโ78Updated 2 weeks ago
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).โ58Updated this week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.โ55Updated this week
- โ46Updated last year
- Helm charts for sigstore projectโ64Updated last week
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-uโฆโ62Updated this week
- Kubernetes policy managed with Flux and Kyvernoโ22Updated last year
- An application that regularly scans all containers in a Kubernetes cluster for vulnerabilitiesโ51Updated last year
- Scans SBOMs for vulnerabilities with Grypeโ79Updated last week
- A collection of reusable Github Actions workflows.โ115Updated this week
- Integrates Spiffe and Vault to have secretless authenticationโ82Updated last week
- Trust Dexter to ensure that all your images are pinned by digest for better securityโ29Updated 10 months ago
- The Helm Charts OCI Proxy, will proxy and transform Helm Chart into OCI images on the fly. Address any Helm Chart as OCI image.โ94Updated this week
- vexctl is a tool to attest VEX impact statementsโ44Updated last year
- โ32Updated 4 years ago
- โ21Updated 5 months ago
- Automatically self-serviced applications for ArgoCD.โ24Updated 2 years ago
- โ35Updated 2 years ago
- Kubernetes Admission Controller for Image Scanning using OPAโ50Updated last year