sysdiglabs / k8s-security-configwatchLinks
Git action to generate security lint report for Kubernetes workload YAML files on PR
☆28Updated 3 years ago
Alternatives and similar repositories for k8s-security-configwatch
Users that are interested in k8s-security-configwatch are comparing it to the libraries listed below
Sorting:
- CLI for searching Rego policies☆105Updated 3 years ago
- Kubernetes operator for Falco that allows developers to manage rules for detecting intruders and backdoors☆68Updated 4 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Golang library which provides functionality to evaluate GCP resources against Rego-based policies☆46Updated last month
- A set of shared policies for use with Conftest and other Open Policy Agent tools☆67Updated 4 years ago
- Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.☆52Updated 2 weeks ago
- Check images in your charts for vulnerabilities☆41Updated last year
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated last year
- ☆37Updated 4 years ago
- A kubectl plugin which triggers a Sysdig capture☆100Updated last year
- GKE CIS 1.1.0 Benchmark InSpec Profile☆27Updated 3 years ago
- Kubernetes Admission Controller for Image Scanning using OPA☆51Updated last year
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆64Updated 3 weeks ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated last week
- Slack alert bot for matching Github Audit Events☆10Updated 6 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆50Updated last year
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆27Updated 7 months ago
- ☆27Updated 2 years ago
- ☆32Updated 5 years ago
- Owasp Zap chart for Kubernetes☆50Updated 3 years ago
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆90Updated last week
- Terraform provider for Policy Sentry (IAM least privilege generator and auditor)☆29Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated last month
- Sharable Config Presets for Renovatebot, especially useful for DevOps folks☆50Updated this week
- Pre-commit git hooks for Open Policy Agent (OPA) and Rego development☆66Updated 3 years ago
- Kubernetes Common Configuration Scoring System☆124Updated 2 years ago
- Example Code along with the blog post at https://blokje5/dev☆24Updated 5 years ago
- A GitHub Action for using Conftest☆33Updated 3 years ago
- ☆38Updated 3 years ago