sysdiglabs / scan-action
Inline Image Scan Github Action
☆30Updated 2 months ago
Alternatives and similar repositories for scan-action:
Users that are interested in scan-action are comparing it to the libraries listed below
- ☆19Updated 2 years ago
- Various tools, images, etc. to support the Wolfi OSS project☆21Updated this week
- Sigstore user stories☆30Updated last year
- Kubernetes Admission Controller for Image Scanning using OPA☆50Updated last year
- Github Action implementation of SLSA Provenance Generation☆48Updated this week
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆64Updated 2 weeks ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆62Updated last week
- Go library for Sigstore signing and verification☆18Updated last year
- Go implementation for CNAB content trust verification using TUF, Notary, and in-toto☆31Updated last year
- Kubernetes Config Connector Policy Demo.☆25Updated 4 years ago
- A kubectl plugin to explore ingresses -> services -> workloads☆16Updated 4 years ago
- ☆35Updated 3 years ago
- ☆11Updated 2 years ago
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆42Updated last year
- A CLI used to work with the Wolfi OSS project☆60Updated this week
- Collection of kbrew recipes☆10Updated 3 years ago
- Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.☆43Updated last year
- A High-Availability distribution of Knative.☆20Updated last year
- ☆20Updated 9 months ago
- Tool to check your Kubernetes cluster for certificates affected by Let's Encrypt's CAA rechecking bug☆21Updated 5 years ago
- ☆32Updated 5 years ago
- cloud native software supply chain ☁️🔗☆63Updated 4 years ago
- A simple tool for converting Rego (OPA) rule into command.☆28Updated 2 years ago
- Octant plugin for viewing Starboard security information☆57Updated 3 years ago
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆23Updated 4 months ago
- GitOps workflow for managing app delivery on multiple clusters☆23Updated 5 years ago
- Kubernetes tools in a "distroless" container☆13Updated last year
- This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)☆62Updated 3 years ago
- Enabling Software Supply Chain Security Capabilities in ArgoCD☆86Updated 2 years ago
- Build and deploy Go applications with Terraform☆27Updated this week