Alternatives and similar repositories for privateer:

Users that are interested in privateer are comparing it to the libraries listed below

• defenseunicorns / go-oscal
  Repository for the generation of OSCAL data types
  ☆24Updated last week
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated last year
• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆16Updated last month
• chainguard-dev / clank
  Simple tool that allows you to detect imposter commits in GitHub Actions workflows.
  ☆23Updated 4 months ago
• wolfi-dev / wolfictl
  A CLI used to work with the Wolfi OSS project
  ☆60Updated this week
• chainguard-dev / edu
  Docs and Tutorials for Chainguard
  ☆83Updated this week
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated 2 years ago
• tap8stry / orion
  Go beyond package manager discovery for SBOM
  ☆18Updated 3 years ago
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆85Updated this week
• chainguard-dev / maxcve
  ☆19Updated last month
• rallyhealth / conftest-policy-packs
  Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.
  ☆58Updated last year
• mindersec / minder-rules-and-profiles
  A repository containing Minder rules and profiles recommended by your friends at Stacklok
  ☆23Updated last week
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated last year
• chainguard-dev / darkfiles
  Darkfiles finds orphaned files in container images and makes them to bad deeds
  ☆41Updated last year
• turbot / steampipe-plugin-code
  Use SQL to instantly query secrets and more from source code. Open source CLI. No DB required.
  ☆17Updated last week
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆117Updated last week
• aquasecurity / vscode-tfsec
  vscode extension for tfsec
  ☆30Updated 2 years ago
• turbot / steampipe-mod-aws-well-architected
  Are AWS Well-Architected best practices being followed? Use Powerpipe and Steampipe to check if your AWS accounts are following best prac…
  ☆12Updated 6 months ago
• raajheshkannaa / auto-close-aws-accounts
  Automatically close AWS Accounts when moved to a specific Organizational Unit, such as SuspendedOU or ToBeDeletedOU or BlackHole 😛
  ☆14Updated 2 years ago
• GoComply / oscalkit
  NIST OSCAL SDK and CLI
  ☆19Updated 9 months ago
• latacora / latacora-service-control-policies
  Service Control Policies that have been Latacora recommended all wrapped up in terraform that is easy to attach to an OU.
  ☆24Updated 11 months ago
• aidansteele / ima.ge.cx
  ☆41Updated 2 years ago
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆60Updated 2 years ago
• controlplaneio / collie
  OSCAL and Kyverno Policy Demo for AWS
  ☆12Updated last year
• aquasecurity / cfsec
  Static analysis for CloudFormation templates to identify common misconfiguration
  ☆57Updated 3 years ago
• darkbitio / tools
  Darkbit Cloud Security Tools
  ☆25Updated 4 years ago
• communitysec / sbom-hall-of-fame
  A place for the InfoSec community to share and celebrate real stories of organizations successfully using SBOMs (and other bills of mater…
  ☆42Updated last year
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆38Updated 6 months ago
• oscal-compass / compliance-trestle-agile-authoring
  Agile authoring tutorial and repo set-up tooling
  ☆18Updated 7 months ago
• octo-sts / action
  ☆42Updated 5 months ago