thoughtworks / talisman
Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and private keys.
☆1,987Updated last week
Alternatives and similar repositories for talisman
Users that are interested in talisman are comparing it to the libraries listed below
Sorting:
- Tfsec is now part of Trivy☆6,816Updated last week
- Detect, track and alert on infrastructure drift☆2,535Updated last month
- (NOT MAINTAINED) Build And Testing Environments as Code Tool☆683Updated last year
- InSpec: Auditing and Testing Framework☆2,910Updated this week
- A tool for cleaning up your cloud accounts by nuking (deleting) all resources within it☆2,958Updated this week
- Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.☆7,656Updated this week
- Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.☆4,363Updated 4 years ago
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,115Updated this week
- Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy☆3,247Updated 2 weeks ago
- An enterprise friendly way of detecting and preventing secrets in code.☆4,054Updated 2 months ago
- Dockerfile linter, validate inline bash, written in Haskell☆10,914Updated last month
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆2,966Updated this week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆4,923Updated last week
- a ruggedization framework that embodies the principle "be mean to your code"☆988Updated 2 years ago
- GitHub App to set and enforce security policies☆1,320Updated this week
- Interactive Terraform visualization. State and configuration explorer.☆3,131Updated 10 months ago
- A Pluggable Terraform Linter☆5,252Updated last week
- validate the structure of your container images☆2,380Updated last month
- Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.☆8,621Updated this week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,287Updated this week
- Docker containers vulnerability scan☆855Updated 3 months ago
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,655Updated this week
- IAM Least Privilege Policy Generator☆2,080Updated last week
- A vault for securely storing and accessing AWS credentials in development environments☆8,717Updated 9 months ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆6,954Updated this week
- Scan your container images for package vulnerabilities with Aqua Security☆857Updated 4 years ago
- Interactive visualizations of Terraform dependency graphs using d3.js☆2,114Updated 9 months ago
- An easy-to-use, cross-platform measurement tool that pulls data out of CD pipelines and analysis the four key metrics for you.☆368Updated last year
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start☆2,894Updated 4 months ago
- OpenSSF Scorecard - Security health metrics for Open Source☆4,884Updated this week