testifysec / go-ima
go-ima is a tool that checks if a file has been tampered with. It is useful in ensuring integrity in CI systems
☆12Updated 11 months ago
Related projects: ⓘ
- Red team tool that emulates the SolarWinds CI compromise attack vector.☆21Updated 6 months ago
- An query language and interactive tooling to work with SBOM data.☆12Updated last week
- A trivial wrapper around spf13/cobra to simplify some basic patterns☆22Updated 10 months ago
- efficient linux security monitoring☆25Updated 6 years ago
- Kubernetes security scanner based on the open-source container vulnerability scanner Trivy.☆23Updated 3 years ago
- ☆21Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated this week
- A kustomize plugin for using age encrypted files in Secrets☆13Updated 5 months ago
- Terraform IAC for K3S on AWS☆15Updated 3 years ago
- A curated list of awesome CNAB (Cloud Native Applications Bundles) | https://cnab.io/☆15Updated 3 years ago
- Go implementation of witness☆21Updated this week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆50Updated 4 months ago
- Tool to automate build instructions generation☆29Updated last week
- Integrates Spiffe and Vault to have secretless authentication☆82Updated last week
- Helper methods for Magefiles☆32Updated last year
- replace a k8s deployment by a proxy to a pod in another cluster☆10Updated 3 years ago
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- 🎟 Voucher creates attestations for Binary Authorization☆23Updated last year
- Minimal container registry☆13Updated this week
- Go implementation for CNAB content trust verification using TUF, Notary, and in-toto☆31Updated last year
- Proof of concept that uses cosign and GitHub's in built OIDC for actions to sign container images, providing a proof that what is in the …☆14Updated last year
- Library to work with linux namespaces in go☆32Updated 8 months ago
- A simple tool for converting Rego (OPA) rule into command.☆28Updated 2 years ago
- ☆20Updated 4 months ago
- To manage Docker Content Trust and Notary certificates☆12Updated this week
- A docker CLI plugin for verifying signed attestations on images☆13Updated 10 months ago
- 🔍 Rekor transparency log monitoring and alerting☆26Updated 11 months ago
- Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU☆20Updated 2 weeks ago
- TACOS framework structural details☆19Updated 9 months ago
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster☆34Updated 2 years ago