sysdiglabs / k8s-security-configwatchLinks
Git action to generate security lint report for Kubernetes workload YAML files on PR
☆28Updated 3 years ago
Alternatives and similar repositories for k8s-security-configwatch
Users that are interested in k8s-security-configwatch are comparing it to the libraries listed below
Sorting:
- CLI for searching Rego policies☆105Updated 3 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Slack alert bot for matching Github Audit Events☆10Updated 7 months ago
- Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.☆52Updated this week
- Check images in your charts for vulnerabilities☆41Updated last year
- Pre-commit git hooks for Open Policy Agent (OPA) and Rego development☆66Updated 3 years ago
- Kubernetes Admission Controller for Image Scanning using OPA☆51Updated last year
- Example Code along with the blog post at https://blokje5/dev☆24Updated 5 years ago
- A GitHub Action for using Conftest☆33Updated 3 years ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆50Updated last year
- Report OPA Gatekeeper audit violations in Security Command Center.☆42Updated 6 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- ☆37Updated 4 years ago
- Golang library which provides functionality to evaluate GCP resources against Rego-based policies☆46Updated 2 weeks ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- Forward EKS CloudWatch k8s audit events to Sysdig secure☆27Updated last year
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- GKE CIS 1.1.0 Benchmark InSpec Profile☆27Updated 3 years ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated last week
- A kubectl plugin which triggers a Sysdig capture☆100Updated 2 years ago
- Scans SBOMs for vulnerabilities with Grype☆82Updated this week
- A set of shared policies for use with Conftest and other Open Policy Agent tools☆67Updated 4 years ago
- Kubernetes Common Configuration Scoring System☆123Updated 2 years ago
- Kubernetes audit logging, when you don't control the control plane☆81Updated last week
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated this week
- Cloud Security Posture security policies☆31Updated 9 months ago
- cloud native software supply chain ☁️🔗☆63Updated 4 years ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- Owasp Zap chart for Kubernetes☆49Updated 3 years ago
- vscode extension for tfsec☆30Updated 2 years ago