sysdiglabs / benchmark-dockerfileLinks
Github action to benchmark dockerfiles in github repository.
☆12Updated 2 years ago
Alternatives and similar repositories for benchmark-dockerfile
Users that are interested in benchmark-dockerfile are comparing it to the libraries listed below
Sorting:
- ☆19Updated 3 years ago
- Git action to generate security lint report for Kubernetes workload YAML files on PR☆28Updated 3 years ago
- ☆56Updated last year
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆49Updated 3 weeks ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆50Updated last year
- Pre-commit git hooks for Open Policy Agent (OPA) and Rego development☆66Updated 3 years ago
- Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.☆52Updated this week
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆91Updated this week
- Check images in your charts for vulnerabilities☆41Updated last year
- Github Action implementation of SLSA Provenance Generation☆48Updated this week
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practice…☆59Updated 6 months ago
- Runs Kubesec as GitHub action☆20Updated 4 years ago
- A GitHub Action for using Conftest☆33Updated 3 years ago
- Octant plugin for viewing Starboard security information☆57Updated 3 years ago
- GitHub Action to validate Kubernetes manifest files☆35Updated last week
- Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts☆16Updated last week
- OpenSourced Helm charts☆49Updated last year
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Updated 2 years ago
- 🦅 Run a StackHawk scan in GitHub Actions☆26Updated 2 months ago
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆97Updated last year
- Vanilla GitHub action to run tfsec☆55Updated 2 years ago
- ☆23Updated 5 months ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- Kubernetes Native, Runtime Container Image Scanning☆39Updated 3 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- CLI for searching Rego policies☆105Updated 3 years ago
- Anchore container analysis and scan provided as a GitHub Action☆246Updated last week
- A GitHub action to help you scan your docker image for vulnerabilities☆221Updated 2 years ago
- Helm charts for Anchore tools and services☆47Updated this week