square / spiffe-aws-assume-role
This tool allows using a SPIFFE JWT to authenticate to AWS APIs
☆35Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for spiffe-aws-assume-role
- Tag and remove AWS Resources with Automation☆39Updated 5 years ago
- Lambda function for verifying signed images in ECS☆33Updated 8 months ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆56Updated this week
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated last week
- A Kubernetes Controller that will ensure that the EC2 Source Destination Check (source-dest-check attribute) is disabled on nodes within …☆18Updated 4 years ago
- Integrates Spiffe and Vault to have secretless authentication☆85Updated last week
- GitHub actions for the chainguard-images☆17Updated 3 months ago
- Kitten is a local runner for Tekton pipeline, relying on a local docker engine☆34Updated 5 years ago
- Example consumer of the GitOps Toolkit Source APIs☆38Updated this week
- A simple tool for converting Rego (OPA) rule into command.☆28Updated 2 years ago
- Lint your Rego policies inside of Visual Studio Code☆15Updated 4 months ago
- Easy AWS stack for Crossplane☆13Updated 4 years ago
- ☆32Updated 4 years ago
- Crossplane Provider for GitHub☆24Updated last month
- ☆27Updated 2 years ago
- sigstore installation walkthrough, local☆56Updated 6 months ago
- Envoy External Authorization API Bridge To SPIFFE Workload API☆46Updated 4 years ago
- This project creates a mutation admission controller that injects AWS SIGv4 proxy as a sidecar.☆27Updated 7 months ago
- Carvel Terraform provider with resources for ytt and kapp to template and deploy to Kubernetes☆42Updated last year
- A library for representing OCI image layers in an abstract filesystem☆27Updated 4 years ago
- A lightweight API for maintaining a list of Kubernetes clusters and associated metadata.☆26Updated this week
- 🔍 Rekor transparency log monitoring and alerting☆27Updated last year
- Go implementation for CNAB content trust verification using TUF, Notary, and in-toto☆31Updated last year
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆71Updated this week
- Manage existing infrastructure with Cluster API using this provider.☆45Updated 2 years ago
- A tool to handle the retagging of third party container images☆25Updated this week
- vault-auth-spire is an authentication plugin for Hashicorp Vault which allows logging into Vault using a Spire provided SVID.☆41Updated last year
- K8S Operator for Rekor☆20Updated last year