Alternatives and similar repositories for scan-action

Users that are interested in scan-action are comparing it to the libraries listed below

• falcosecurity-retire / cloud-native-security-hub
  Cloud Native Security Hub - Security Resources
  ☆54Updated 5 years ago
• krisnova / hack
  Kubernetes security and vulnerability tools and utilities.
  ☆57Updated 4 years ago
• rode / rode-legacy
  cloud native software supply chain ☁️🔗
  ☆63Updated 4 years ago
• developer-guy / container-image-sign-and-verify-with-cosign-and-opa
  This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
  ☆63Updated 4 years ago
• anchore / kubernetes-admission-controller
  Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore
  ☆65Updated last week
• falcosecurity-retire / falco-security-workshop
  Container Security Workshop covering using Falco on Kubernetes.
  ☆106Updated 4 years ago
• falcosecurity-retire / kubernetes-response-engine
  ☆37Updated 4 years ago
• raspbernetes / k8s-security-policies
  This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations…
  ☆174Updated 3 weeks ago
• sysdiglabs / opa-image-scanner
  Kubernetes Admission Controller for Image Scanning using OPA
  ☆50Updated last year
• snyk-labs / helm-snyk
  Check images in your charts for vulnerabilities
  ☆42Updated 2 months ago
• instrumenta / policies
  A set of shared policies for use with Conftest and other Open Policy Agent tools
  ☆66Updated 4 years ago
• anchore / ci-tools
  Contains scripts for running anchore engine in CI pipelines
  ☆34Updated 3 years ago
• mhausenblas / the-container-security-book
  The Container Security Book—a free book for practitioners
  ☆82Updated 5 years ago
• octarinesec / kccss
  Kubernetes Common Configuration Scoring System
  ☆123Updated 3 years ago
• controlplaneio / kubesec-webhook
  Security risk analysis for Kubernetes resources
  ☆75Updated 7 months ago
• simplyzee / kube-owasp-zap
  Owasp Zap chart for Kubernetes
  ☆49Updated 3 years ago
• dlorenc / cosigned
  ☆35Updated 3 years ago
• brendanjryan / ccheck
  A command line tool for validating Kubernetes configs with rego
  ☆65Updated 6 years ago
• ianmiell / bad-dockerfile
  A Dockerfile that creates an image with known vulnerabilities.
  ☆49Updated 3 years ago
• geerlingguy / k8s-pod-rbac-breakout
  Kubernetes Pod RBAC Breakout
  ☆39Updated 2 years ago
• snyk / kubernetes-monitor
  Use Snyk to find and fix vulnerabilities in your Kubernetes workloads
  ☆92Updated this week
• sysdiglabs / terraform-provider-sysdig
  Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.
  ☆54Updated last month
• lukebond / microscanner-wrapper
  Bash wrapper script for Aquasec Microscanner
  ☆61Updated 5 years ago
• falcosecurity-retire / falco-operator
  Kubernetes operator for Falco that allows developers to manage rules for detecting intruders and backdoors
  ☆68Updated 5 years ago
• tmobile / magtape
  MagTape Policy-as-Code for Kubernetes
  ☆150Updated last year
• sysdiglabs / secure-inline-scan
  ☆19Updated 2 years ago
• ritazh / psp-gatekeeper-policies
  ☆32Updated 5 years ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆45Updated 2 years ago
• sysdiglabs / k8s-security-configwatch
  Git action to generate security lint report for Kubernetes workload YAML files on PR
  ☆28Updated 3 years ago
• k8scop / k8s-security-dashboard
  A security monitoring solution for Kubernetes
  ☆132Updated last year