thoughtworks / talismanLinks
Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and private keys.
☆2,012Updated last month
Alternatives and similar repositories for talisman
Users that are interested in talisman are comparing it to the libraries listed below
Sorting:
- An enterprise friendly way of detecting and preventing secrets in code.☆4,162Updated 4 months ago
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start☆2,963Updated 6 months ago
- A service that analyzes docker images and scans for vulnerabilities☆1,586Updated 2 years ago
- (NOT MAINTAINED) Build And Testing Environments as Code Tool☆681Updated last year
- Docker containers vulnerability scan☆858Updated 5 months ago
- InSpec: Auditing and Testing Framework☆2,976Updated this week
- a ruggedization framework that embodies the principle "be mean to your code"☆990Updated 3 years ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,407Updated this week
- Vulnerability Static Analysis for Containers☆10,719Updated this week
- An easy-to-use, cross-platform measurement tool that pulls data out of CD pipelines and analysis the four key metrics for you.☆368Updated last year
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,172Updated this week
- Tfsec is now part of Trivy☆6,853Updated last month
- Over the wire test doubles☆2,027Updated 4 months ago
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,009Updated this week
- Notary is a project that allows anyone to have trust over arbitrary collections of data☆3,279Updated 11 months ago
- validate the structure of your container images☆2,396Updated last month
- Dockerfile linter, validate inline bash, written in Haskell☆11,346Updated this week
- Command-line tools for working with Architecture Decision Records☆4,985Updated last year
- Detect, track and alert on infrastructure drift☆2,562Updated this week
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,732Updated this week
- Supply-chain Levels for Software Artifacts☆1,692Updated 3 weeks ago
- Containerize your development and operations environment☆303Updated 6 months ago
- CLI for managing secrets☆2,523Updated this week
- Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.☆7,715Updated this week
- Scan your container images for package vulnerabilities with Aqua Security☆855Updated 4 years ago
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,142Updated this week
- git-xargs is a command-line tool (CLI) for making updates across multiple Github repositories with a single command.☆1,019Updated last month
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆846Updated last year
- a lightweight, security focused, BDD test framework against terraform.☆1,399Updated 2 weeks ago
- Find licenses for your project's dependencies.☆1,767Updated 11 months ago