square / spiffe-aws-assume-role
This tool allows using a SPIFFE JWT to authenticate to AWS APIs
☆35Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for spiffe-aws-assume-role
- Lambda function for verifying signed images in ECS☆33Updated 8 months ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆56Updated this week
- Envoy External Authorization API Bridge To SPIFFE Workload API☆46Updated 4 years ago
- Build and deploy Go applications with Terraform☆27Updated last week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- ☆19Updated 3 months ago
- Go implementation for CNAB content trust verification using TUF, Notary, and in-toto☆31Updated last year
- vault-auth-spire is an authentication plugin for Hashicorp Vault which allows logging into Vault using a Spire provided SVID.☆41Updated last year
- A curated list of awesome CNAB (Cloud Native Applications Bundles) | https://cnab.io/☆15Updated 3 years ago
- 🔍 Rekor transparency log monitoring and alerting☆27Updated last year
- Lint your Rego policies inside of Visual Studio Code☆15Updated 5 months ago
- ☆32Updated 4 years ago
- Kitten is a local runner for Tekton pipeline, relying on a local docker engine☆34Updated 5 years ago
- Integrates Spiffe and Vault to have secretless authentication☆85Updated this week
- Create a dedicated IaaS instance per Pod to mitigate container breakout (including CPU vulnerabilities depending on the instance type)☆22Updated 4 years ago
- A lightweight API for maintaining a list of Kubernetes clusters and associated metadata.☆26Updated last week
- A simple tool for converting Rego (OPA) rule into command.☆28Updated 2 years ago
- A library for representing OCI image layers in an abstract filesystem☆27Updated 4 years ago
- Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.☆41Updated last year
- cloud native software supply chain ☁️🔗☆64Updated 3 years ago
- Tool providing easy IAM setup on EKS for Amazon Managed Service for Prometheus (AMP) users.☆11Updated last year
- ☆35Updated 3 years ago
- A GitHub Action for using Conftest☆33Updated 2 years ago
- 🎟 Voucher creates attestations for Binary Authorization☆73Updated 4 months ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated this week
- ☆85Updated 5 months ago
- The SPIFFE Helper is a tool that can be used to retrieve and manage SVIDs on behalf of a workload☆46Updated this week
- Mattermost builder☆11Updated 2 years ago
- A VMware cloud native podcast. Exploring cloud native, one buzzword at a time!☆25Updated last year