A tool for securing CI/CD workflows with version pinning.
☆947Apr 21, 2026Updated last month
Alternatives and similar repositories for ratchet
Users that are interested in ratchet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Keyless Git signing using Sigstore☆1,092Updated this week
- Evaluate source control (GitHub) security posture☆251Mar 8, 2023Updated 3 years ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆534Updated this week
- SLSA level 3 action☆11Apr 26, 2024Updated 2 years ago
- BadRobot - Operator Security Audit Tool☆229Jun 5, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,191Updated this week
- Build OCI images from APK packages directly without Dockerfile☆1,633Updated this week
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆362Updated this week
- Open source compliance tool for development platforms.☆286Oct 30, 2023Updated 2 years ago
- GitHub App to set and enforce security policies☆1,429Updated this week
- Code signing and transparency for containers and binaries☆6,033Updated this week
- task runner for local and remote hosts☆747May 31, 2026Updated 2 weeks ago
- Automation engine to build, test and ship any codebase. Runs locally, in CI, or directly in the cloud☆15,939Updated this week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆1,195Updated this week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Build and deploy Go applications☆8,445Updated this week
- A library of rules for Conftest used to detect misconfigurations within Terraform configuration files☆192Sep 20, 2022Updated 3 years ago
- A vulnerability scanner for container images and filesystems☆12,348Jun 5, 2026Updated last week
- Automated refactoring for Terraform☆72May 4, 2022Updated 4 years ago
- eBPF-based Security Observability and Runtime Enforcement☆4,739Updated this week
- Cloud cost intelligence for engineers, AI coding agents, and CI/CD 💰📉 Shift FinOps Left!☆12,344Jun 3, 2026Updated last week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆31Nov 8, 2023Updated 2 years ago
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆342May 24, 2026Updated 3 weeks ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆9,077Updated this week
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Detect, track and alert on infrastructure drift☆2,647May 14, 2026Updated last month
- Validation of best practices in your Kubernetes clusters☆3,366May 19, 2026Updated 3 weeks ago
- Cloud native secrets management for developers - never leave your command line for secrets.☆3,213Jan 27, 2026Updated 4 months ago
- OpenSSF Scorecard - Security health metrics for Open Source☆5,519Updated this week
- Kubernetes Application Archive☆152May 4, 2022Updated 4 years ago
- Linux Process Discovery. C Library, Go bindings, Runtime.☆223Jul 20, 2022Updated 3 years ago
- The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, …☆1,287Updated this week
- build APKs from source code☆602Updated this week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,210Nov 20, 2025Updated 6 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Run any process, on your machine or in an AI agent's environment, as if it were a pod in your Kubernetes cluster: real env vars, DNS, net…☆5,109Jun 7, 2026Updated last week
- A policy management tool for interacting with Gatekeeper☆393Nov 20, 2025Updated 6 months ago
- Automate Kubernetes Configuration Editing☆1,873Updated this week
- Terraform provider and module version checking tool☆138Dec 6, 2022Updated 3 years ago
- Boundary enables identity-based access management for dynamic infrastructure.☆4,040Jun 3, 2026Updated last week
- 👀 A Kubernetes cluster resource sanitizer☆6,289Dec 8, 2025Updated 6 months ago
- The Finch CLI is an open source client for container development☆4,033Updated this week