slashben / beat-ac-cosign-verifierLinks
This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures
☆12Updated 2 years ago
Alternatives and similar repositories for beat-ac-cosign-verifier
Users that are interested in beat-ac-cosign-verifier are comparing it to the libraries listed below
Sorting:
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- sigstore the hard way!☆114Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)☆62Updated 3 years ago
- Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…☆26Updated last year
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆84Updated 2 weeks ago
- ☆20Updated last month
- Runtime security plug to protect user containers☆65Updated last week
- Scans SBOMs for vulnerabilities with Grype☆82Updated last week
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated last week
- A replacement for "kubectl exec" that works over WebSocket connections.☆40Updated last year
- ☆20Updated 3 weeks ago
- ☆41Updated last month
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆125Updated last month
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆63Updated last week
- Kubernetes audit logging, when you don't control the control plane☆81Updated last week
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆55Updated last month
- ☆19Updated 9 months ago
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆23Updated 6 months ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆67Updated 6 months ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆61Updated this week
- A CLI used to work with the Wolfi OSS project☆62Updated this week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- A place for policy work group related proposals and prototypes.☆67Updated last month
- An query language and interactive tooling to work with SBOM data.☆14Updated 8 months ago
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 5 months ago
- Evolution process of The Falco Project☆53Updated this week
- ☆19Updated 3 weeks ago
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆65Updated last week