ybelMekk's Stars
aquasecurity/trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
apple/pkl-go-examples
Examples for using Pkl within Go applications
sigstore/helm-charts
Helm charts for sigstore project
aquasecurity/trivy-operator
Kubernetes-native security toolkit
aquasecurity/trivy-action
Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
actions/attest-sbom
Action for generating SBOM attestations for workflow artifacts
DependencyTrack/hyades
Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
DependencyTrack/helm-charts
Helm Charts for Dependency-Track
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
ossf/scorecard-action
Official GitHub Action for OpenSSF Scorecard.
rapid7/metasploit-framework
Metasploit Framework
slsa-framework/slsa-github-generator
Language-agnostic SLSA provenance generation for Github Actions
nais/salsa-workshop
SLSA Workshop
navikt/mock-oauth2-server
A scriptable/customizable web server for testing HTTP clients using OAuth2/OpenID Connect or applications with a dependency to a running OAuth2 server (i.e. APIs requiring signed JWTs from a known issuer)
nais/azurerator
Kubernetes Operator for automated registration of Azure AD applications
sigstore/k8s-manifest-sigstore
kubectl plugin for signing Kubernetes manifest YAML files with sigstore
nais/tokendings
Service implementing some parts of OAuth 2.0 Token Exchange (https://www.rfc-editor.org/rfc/rfc8693.html)
sethvargo/ratchet
A tool for securing CI/CD workflows with version pinning.
nais/salsa
SLSA level 3 action
sigstore/rekor-operator
K8S Operator for Rekor
goreleaser/goreleaser
Deliver Go binaries as fast and easily as possible
philips-labs/slsa-provenance-action
Github Action implementation of SLSA Provenance Generation
sigstore/cosign
Code signing and transparency for containers and binaries
nais/wonderwall
openid connect relying party as a sidecar/service
nais/hahaha
the villain that eliminates helpless sidecars
slsa-framework/github-actions-demo
Proof-of-concept SLSA provenance generator for GitHub Actions
sigstore/fulcio
Sigstore OIDC PKI
slsa-framework/slsa
Supply-chain Levels for Software Artifacts
in-toto/attestation
in-toto Attestation Framework
nais/device
naisdevice is a application suite that enables NAV developers to connect to internal resources in a secure and friendly manner.