Alternatives and similar repositories for scanner

Users that are interested in scanner are comparing it to the libraries listed below

• openvex / go-vex
  Go module to generate and transform VEX documents
  ☆43Updated this week
• falcosecurity / falcoctl
  Administrative tooling for Falco
  ☆108Updated last week
• ComplianceAsCode / libreSCAP
  A modern, cloud native SCAP scanner.
  ☆20Updated 3 years ago
• anchore / kubernetes-admission-controller
  Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore
  ☆65Updated last week
• spiffe / tornjak
  Tornjak is a UI and management layer used for brokering human access to one or more SPIRE deployments
  ☆83Updated last month
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆70Updated 6 months ago
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆99Updated this week
• ossf / ossf-landscape
  ☆30Updated this week
• kubernetes-sigs / tejolote
  A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
  ☆63Updated this week
• sigstore / friends
  Sigstore user stories
  ☆30Updated last year
• cilium / certgen
  A convenience tool to generate and store certificates for Hubble Relay mTLS
  ☆26Updated 3 weeks ago
• mchmarny / vimp
  Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.
  ☆64Updated last year
• cosi-project / engine
  COSI Engine
  ☆39Updated 2 years ago
• philips-labs / spiffe-vault
  Integrates Spiffe and Vault to have secretless authentication
  ☆90Updated 2 weeks ago
• kubewarden / kwctl
  Go-to CLI tool for Kubewarden users
  ☆84Updated this week
• wolfi-dev / wolfictl
  A CLI used to work with the Wolfi OSS project
  ☆63Updated this week
• submariner-io / shipyard
  Framework and scripts to create multiple Kubernetes clusters with kind (K8s in Docker) for local E2E testing and development.
  ☆54Updated this week
• anchore / grype-db
  ☆50Updated this week
• containers / selinuxd
  A daemon that manages SELinux policies on a filesystem
  ☆36Updated 2 months ago
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆20Updated 2 months ago
• omnibor / bomsh
  bomsh is collection of tools to explore the OmniBOR idea
  ☆21Updated 8 months ago
• in-toto / in-toto-golang
  A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.
  ☆139Updated this week
• kusaridev / spector
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆32Updated 2 months ago
• trustification / trustification
  Services for storing and searching information about software content and vulnerabilities
  ☆51Updated last week
• hermetoproject / hermeto
  Hermeto is a CLI tool that prefetches your project dependencies to aid in making your container build process hermetic.
  ☆16Updated this week
• kubewarden / policy-evaluator
  Crate used by Kubewarden that is able to evaluate policies with a given input, request to evaluate and settings.
  ☆17Updated this week
• Hritik14 / purl.fyi
  a webservice to translate and communicate universal purls to their homepage
  ☆12Updated 2 years ago
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated 5 months ago
• sigstore / rekor-operator
  K8S Operator for Rekor
  ☆20Updated 2 years ago
• quay / claircore
  foundation modules for scanning container packages and reporting vulnerabilities
  ☆147Updated this week