plexsystems / vscode-regolint

Related projects: ⓘ

• square / spiffe-aws-assume-role
  This tool allows using a SPIFFE JWT to authenticate to AWS APIs
  ☆34Updated 3 months ago
• kmcquade / conftest-terraform-multifolder-policies
  Example of how to write OPA rules with conftest in a modular fashion for Terraform 0.12 plans.
  ☆12Updated 4 years ago
• AkihiroSuda / instance-per-pod
  Create a dedicated IaaS instance per Pod to mitigate container breakout (including CPU vulnerabilities depending on the instance type)
  ☆22Updated 4 years ago
• ritazh / psp-gatekeeper-policies
  ☆32Updated 4 years ago
• onelittlenightmusic / opactl
  A simple tool for converting Rego (OPA) rule into command.
  ☆28Updated 2 years ago
• hasheddan / veneer
  A library for representing OCI image layers in an abstract filesystem
  ☆27Updated 4 years ago
• rode / rode-legacy
  cloud native software supply chain ☁️🔗
  ☆64Updated 3 years ago
• brigadecore / brigade-k8s-gateway
  Kubernetes event gateway for Brigade v1
  ☆27Updated 2 years ago
• falcosecurity-retire / falco-operator
  Kubernetes operator for Falco that allows developers to manage rules for detecting intruders and backdoors
  ☆68Updated 4 years ago
• itaysk / regogo
  JSON query library, based on Rego
  ☆18Updated 4 years ago
• clover / gatekeeper-conftest
  conftest plugin that transforms k8s input object to be compatible with gatekeeper policies
  ☆13Updated 7 months ago
• kubernetes-sigs / tejolote
  A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
  ☆55Updated this week
• crdsdev / kindred
  A CLI for boostrapping tenant Kubernetes clusters.
  ☆20Updated 4 years ago
• vmware-tanzu / thepodlets
  A VMware cloud native podcast. Exploring cloud native, one buzzword at a time!
  ☆25Updated last year
• nonstandardlogic / kubevscan
  Kubernetes security scanner based on the open-source container vulnerability scanner Trivy.
  ☆23Updated 3 years ago
• kubernetes-sigs / apisnoop
  ⭕️Snooping on the Kubernetes OpenAPI communications
  ☆87Updated this week
• honk-ci / kubectl-snap
  A balanced chaos test
  ☆34Updated 4 years ago
• carvel-dev / ytt-library-for-kubernetes
  ytt (https://github.com/k14s/ytt) library that includes reusable K8s components (app, ...)
  ☆22Updated last year
• banzaicloud / anchore-image-validator
  Anchore Image Validator lets you automatically detect or block security issues just before a Kubernetes pod starts.
  ☆44Updated last year
• nsmith5 / rekor-sidekick
  🔍 Rekor transparency log monitoring and alerting
  ☆26Updated 11 months ago
• aws-observability / amp-eks-iam
  Tool providing easy IAM setup on EKS for Amazon Managed Service for Prometheus (AMP) users.
  ☆11Updated 11 months ago
• philips-labs / spiffe-vault
  Integrates Spiffe and Vault to have secretless authentication
  ☆82Updated this week
• kelseyhightower / opa-bq-connector
  Ship OPA decision logs to BigQuery
  ☆13Updated last year
• ashutosh-narkar / openapi-to-rego
  Generate Rego from OpenAPI 3.0 specifications
  ☆19Updated 4 years ago
• sigstore / rekor-operator
  K8S Operator for Rekor
  ☆20Updated last year
• giantswarm / app-operator
  Manages apps in Kubernetes clusters, as part of the Giant Swarm app platform
  ☆23Updated this week
• kelseyhightower / opa-on-cloud-run
  Tutorial: Open Policy Agent on Cloud Run
  ☆31Updated 3 years ago
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆22Updated this week
• travelaudience / kubernetes-vault
  ☆13Updated this week