sethvargo / ratchet

Related projects ⓘ

Alternatives and complementary repositories for ratchet

• sigstore / gitsign
  Keyless Git signing using Sigstore
  ☆943Updated this week
• ossf / allstar
  GitHub App to set and enforce security policies
  ☆1,254Updated this week
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆286Updated last year
• step-security / harden-runner
  Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
  ☆618Updated last week
• gruntwork-io / git-xargs
  git-xargs is a command-line tool (CLI) for making updates across multiple Github repositories with a single command.
  ☆949Updated last week
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆249Updated last year
• Skyscanner / turbolift
  A simple tool to help apply changes across many GitHub repositories simultaneously
  ☆442Updated this week
• lindell / multi-gitter
  Update multiple repositories in with one command
  ☆893Updated last week
• github / gh-valet
  Valet helps facilitate the migration of Azure DevOps, CircleCI, GitLab CI, Jenkins, and Travis CI pipelines to GitHub Actions.
  ☆510Updated last year
• slsa-framework / slsa-github-generator
  Language-agnostic SLSA provenance generation for Github Actions
  ☆430Updated this week
• gittuf / gittuf
  A security layer for Git repositories
  ☆462Updated this week
• updatecli / updatecli
  A Declarative Dependency Management tool
  ☆575Updated this week
• chainguard-dev / apko
  Build OCI images from APK packages directly without Dockerfile
  ☆1,199Updated this week
• github / safe-settings
  ☆613Updated last month
• replicatedhq / ttl.sh
  An anonymous & ephemeral Docker image registry
  ☆524Updated last month
• google / gke-policy-automation
  Tool and policy library for reviewing Google Kubernetes Engine clusters against best practices
  ☆515Updated last month
• iximiuz / cdebug
  cdebug - a swiss army knife of container debugging
  ☆1,358Updated last week
• aquasecurity / trivy-action
  Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
  ☆827Updated 2 weeks ago
• sigstore / fulcio
  Sigstore OIDC PKI
  ☆651Updated this week
• sigstore / rekor
  Software Supply Chain Transparency Log
  ☆895Updated this week
• step-security / wait-for-secrets
  Publish from GitHub Actions using multi-factor authentication
  ☆276Updated 3 weeks ago
• fugue / regula
  Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…
  ☆962Updated 2 months ago
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆413Updated this week
• palantir / policy-bot
  A GitHub App that enforces approval policies on pull requests
  ☆772Updated this week
• StyraInc / awesome-opa
  A curated list of OPA related tools, frameworks and articles
  ☆786Updated this week
• chainguard-images / images
  Public Chainguard Images
  ☆546Updated this week
• ycd / dstp
  🧪 Run common networking tests against any site.
  ☆970Updated 2 years ago
• krisnova / naml
  Convert Kubernetes YAML to Golang
  ☆1,257Updated last year
• aquasecurity / chain-bench
  An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…
  ☆726Updated 3 months ago