Pinned Repositories
cloudplayground
Cloudplayground is a collection of automation code for spinning up cloud environments in public clouds
core-plans
Core Habitat Plan definitions
hashitalks-secure-2023
This repository contains code used for my 2023 HashiTalks Secure presentation: Building end-to-end secure workflows for Terraform deployments from code to runtime
jenkins-lacework-tutorial
local-jenkins-environment
This repository contains a Dockerfile and docker-compose.yml for provisioning a local Jenkins environment
windows-development-workstation
Packer and Terraform code for building a Windows Development workstation in the cloud
scottford-io's Repositories
scottford-io/hashitalks-secure-2023
This repository contains code used for my 2023 HashiTalks Secure presentation: Building end-to-end secure workflows for Terraform deployments from code to runtime
scottford-io/windows-development-workstation
Packer and Terraform code for building a Windows Development workstation in the cloud
scottford-io/cloudplayground
Cloudplayground is a collection of automation code for spinning up cloud environments in public clouds
scottford-io/aws-mondoo-secure-ami-packer
scottford-io/local-jenkins-environment
This repository contains a Dockerfile and docker-compose.yml for provisioning a local Jenkins environment
scottford-io/aws-ec2-instances
scottford-io/aws-no-publicIP-check
An example repo using Mondoo to scan AWS for EC2 instances with a publicIP. This code works for Terraform HCL, Terraform Plan, and AWS runtime.
scottford-io/bad_k8s_test
test k8s manifest
scottford-io/cnquery-packs
scottford-io/cnspec-aws-codebuild-terraform
An example repository showing how to scan Terraform projects for misconfigurations using cnspec by Mondoo
scottford-io/cnspec-docker-scan
A sample repository using cnspec to scan Docker builds and push to a remote repository
scottford-io/cnspec-hcl-test
scottford-io/cobra
A Commander for modern Go CLI interactions
scottford-io/gh-actions-docker-ghcr
Example repository for building docker images and pushing to GHCR.io
scottford-io/hack-the-k8s
Kubernetes deployment repo for DevOpsDays Charlotte 2022
scottford-io/m-bootstrap
scottford-io/mondoo-asset-count
scottford-io/mondoo-cicd-jenkins-docker
Integrate Mondoo security scanning with your Jenkins pipeline.
scottford-io/mondoo-jenkins-builds
Example builds integrating Mondoo and Jenkins
scottford-io/mondoo-scan-docker-gh-actions
Example of running Mondoo scans of Docker builds using GH Actions
scottford-io/ossf-compliant-repo
This repository is a working example of an open source project that is compliant with OSSF scorecard
scottford-io/packer
Packer is a tool for creating identical machine images for multiple platforms from a single source configuration.
scottford-io/packer-mondoo-gh-actions
An example testing Packer builds for security vulnerabilities and misconfigurations with Mondoo
scottford-io/packer-plugin-scaffolding
Quick start repository for creating a Packer plugin.
scottford-io/packer-plugin-scottford
a test packer plugin
scottford-io/python-flask-app-demo
A simple Python flask app used for demonstration purposes
scottford-io/scorecard
Security Scorecards - Security health metrics for Open Source
scottford-io/scottford-io.github.io
scottford-io/secure-container-build
This repository is a demo of security testing container builds with Mondoo
scottford-io/terraform-github-scorecard