sigstore / cosignLinks
Code signing and transparency for containers and binaries
☆5,165Updated this week
Alternatives and similar repositories for cosign
Users that are interested in cosign are comparing it to the libraries listed below
Sorting:
- Go library and CLIs for working with container registries☆3,487Updated last week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆7,547Updated this week
- Build OCI images from APK packages directly without Dockerfile☆1,413Updated this week
- KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adh…☆3,262Updated this week
- A vulnerability scanner for container images and filesystems☆10,534Updated this week
- 🐊 Policy Controller for Kubernetes☆3,990Updated this week
- Cloud Native Runtime Security☆8,215Updated this week
- Cost monitoring for Kubernetes workloads and cloud costs☆6,015Updated this week
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,034Updated this week
- 🧵 CLI tool for directly patching container images!☆1,411Updated this week
- The SPIFFE Runtime Environment☆2,034Updated this week
- Boundary enables identity-based access management for dynamic infrastructure.☆3,946Updated this week
- Work with remote images registries - retrieving information, images, signing content☆9,631Updated last week
- Supply-chain Levels for Software Artifacts☆1,713Updated last week
- Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in …☆2,956Updated this week
- OCI registry client - managing content like artifacts, images, packages☆1,878Updated this week
- A tool that facilitates building OCI images.☆8,179Updated this week
- contaiNERD CTL - Docker-compatible CLI for containerd, with support for Compose, Rootless, eStargz, OCIcrypt, IPFS, ...☆9,275Updated this week
- 👀 A Kubernetes cluster resource sanitizer☆5,992Updated last week
- eBPF-based Security Observability and Runtime Enforcement☆4,127Updated this week
- The Cloud Native Control Plane☆10,795Updated this week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,679Updated last week
- CLI for building apps using Cloud Native Buildpacks☆2,788Updated last week
- Notary is a project that allows anyone to have trust over arbitrary collections of data☆3,282Updated last year
- Validation of best practices in your Kubernetes clusters☆3,297Updated last week
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆10,970Updated this week
- Software Supply Chain Transparency Log☆995Updated last week
- Open Policy Agent (OPA) is an open source, general-purpose policy engine.☆10,623Updated this week
- Cloud Native Policy Management☆6,690Updated this week
- Hubble - Network, Service & Security Observability for Kubernetes using eBPF☆3,915Updated last week