sysdiglabs / benchmark-dockerfile
Github action to benchmark dockerfiles in github repository.
☆12Updated 2 years ago
Alternatives and similar repositories for benchmark-dockerfile:
Users that are interested in benchmark-dockerfile are comparing it to the libraries listed below
- Git action to generate security lint report for Kubernetes workload YAML files on PR☆28Updated 3 years ago
- Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.☆52Updated this week
- Github Action implementation of SLSA Provenance Generation☆47Updated 2 weeks ago
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆88Updated last week
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆47Updated last week
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- Octant plugin for viewing Starboard security information☆57Updated 3 years ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆38Updated last month
- Slack alert bot for matching Github Audit Events☆10Updated 4 months ago
- Check images in your charts for vulnerabilities☆41Updated last year
- A GitHub action to help you scan your docker image for vulnerabilities☆221Updated 2 years ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆48Updated last year
- Contains scripts for running anchore engine in CI pipelines☆34Updated 2 years ago
- An Action to wrap creating an SBOM via REST API☆17Updated this week
- Continuous Compliance makes it possible to enforce company policy on repositories. Continuous Compliance will automatically check your re…☆21Updated 9 months ago
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practice…☆56Updated 3 months ago
- Runs Kubesec as GitHub action☆18Updated 3 years ago
- ☆14Updated last year
- Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts☆16Updated last week
- vscode extension for tfsec☆30Updated 2 years ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆80Updated this week
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Updated 2 years ago
- CLI for searching Rego policies☆105Updated 3 years ago
- Github Action to automatically update digests for container images.☆54Updated last week
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆64Updated last week
- Unified Policy Engine☆50Updated 2 weeks ago
- Grype vulnerability check plugin for Visual Studio Code☆22Updated 3 months ago
- The Snyk Exporter has been archived as it is no longer actively maintained.☆29Updated last year
- ☆19Updated 3 years ago