sonatype-nexus-community / ahabLinks
ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
☆68Updated last year
Alternatives and similar repositories for ahab
Users that are interested in ahab are comparing it to the libraries listed below
Sorting:
- Grype vulnerability check plugin for Visual Studio Code☆23Updated 7 months ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 6 months ago
- ☆30Updated last week
- Check images in your charts for vulnerabilities☆41Updated last month
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- vexctl is a tool to attest VEX impact statements☆45Updated 2 years ago
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated last year
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- Plugin for Docker CLI to support SBOM creation using Syft☆157Updated 3 months ago
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆56Updated 7 months ago
- GKE CIS 1.1.0 Benchmark InSpec Profile☆27Updated 3 years ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 2 weeks ago
- Checks whether a Linux server according to security best practices as defined in the CIS Distribution-Independent Linux Benchmark☆175Updated last week
- in-toto is a framework to secure the software supply chain.☆70Updated 7 months ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆68Updated 7 months ago
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆65Updated last week
- An SBOM query language and associated utilities☆54Updated last year
- Simple command-line client to the Anchore Engine service☆114Updated last year
- Kubernetes Common Configuration Scoring System☆123Updated 3 years ago
- Scans SBOMs for vulnerabilities with Grype☆84Updated this week
- Runtime security plug to protect user containers☆66Updated this week
- Provides short-lived credentials for Elasticsearch that are unique to each user or application.☆28Updated last week
- Github Action implementation of SLSA Provenance Generation☆49Updated last week
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆67Updated last week
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆33Updated 2 years ago
- TUF repository for Sigstore trust root☆107Updated this week
- SBOM Search - Context aware search in SBOM repositories☆28Updated last week
- Security scanning & static analysis tool☆94Updated 9 months ago