zoom / vissLinks
☆63Updated last year
Alternatives and similar repositories for viss
Users that are interested in viss are comparing it to the libraries listed below
Sorting:
- Runtime security plug to protect user containers☆65Updated last month
- in-toto is a framework to secure the software supply chain.☆70Updated 4 months ago
- ☆14Updated last year
- Enrich SBOMs with data from third party services☆175Updated 2 months ago
- ☆62Updated 10 months ago
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 4 months ago
- OpenVEX Specification☆150Updated this week
- Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.☆102Updated 2 weeks ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- Go beyond package manager discovery for SBOM☆18Updated 3 years ago
- ☆14Updated 2 years ago
- An SBOM query language and associated utilities☆54Updated last year
- 🎟 Voucher creates attestations for Binary Authorization☆73Updated last month
- Securing Alice's, Bob's and Carl's software supply chain using in-toto☆93Updated last week
- A BOM repository server for distributing CycloneDX BOMs☆77Updated last year
- Check images in your charts for vulnerabilities☆41Updated last year
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆96Updated 2 weeks ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- Use SQL to instantly query GCP resources across regions, projects and organizations. Open source CLI. No DB required.☆42Updated last week
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated last year
- Evaluate source control (GitHub) security posture☆250Updated 2 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆229Updated 9 months ago
- tool to create and manage content for reliability tracking from logs/event data.☆84Updated last year
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- bomsh is collection of tools to explore the OmniBOR idea☆21Updated 7 months ago
- Scans SBOMs for vulnerabilities with Grype☆82Updated last week
- ☆66Updated 6 years ago
- Integrates Spiffe and Vault to have secretless authentication☆87Updated last week
- prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.☆44Updated this week