sysdiglabs / opa-image-scanner
Kubernetes Admission Controller for Image Scanning using OPA
☆50Updated last year
Alternatives and similar repositories for opa-image-scanner:
Users that are interested in opa-image-scanner are comparing it to the libraries listed below
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- A set of shared policies for use with Conftest and other Open Policy Agent tools☆67Updated 4 years ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- ☆32Updated 5 years ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆57Updated this week
- Policy Module: Policy enforcement for your Kubernetes Cluster☆38Updated this week
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆64Updated this week
- Check images in your charts for vulnerabilities☆41Updated last year
- A kubectl plugin for viewing decoded Secret data with search flags.☆40Updated 5 months ago
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆52Updated 2 weeks ago
- Octant plugin for viewing Starboard security information☆57Updated 3 years ago
- Detect intrusions that happened in your Kubernetes cluster through audit logs using Falco☆63Updated 3 years ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆65Updated this week
- An application that regularly scans all containers in a Kubernetes cluster for vulnerabilities☆50Updated last year
- EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.☆27Updated last week
- conftest plugin that transforms k8s input object to be compatible with gatekeeper policies☆14Updated last year
- KubeTrivyExporter is Prometheus Exporter that collects all vulnerabilities detected by aquasecurity/trivy in the kubernetes cluster.☆52Updated 2 years ago
- Cloud Native Security Hub - Security Resources☆54Updated 5 years ago
- A kubectl plugin which triggers a Sysdig capture☆100Updated last year
- ☆48Updated 2 years ago
- Kubernetes Config Connector Policy Demo.☆25Updated 3 years ago
- ☆22Updated 11 months ago
- Scans SBOMs for vulnerabilities with Grype☆79Updated this week
- OPA Gatekeeper vs Kyverno☆61Updated 3 years ago
- A pane of glass between you and your Kubernetes clusters.☆45Updated last year
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Runtime security plug to protect user containers☆65Updated last month
- ☆27Updated 2 years ago