There are no reviews yet. Be the first to send feedback to the community and the maintainers!
kube-linter
KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.stackrox
The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security by hardening the environment.Kubernetes_Security_Specialist_Study_Guide
admission-controller-webhook-demo
Kubernetes admission controller webhook examplego-grpc-http1
A gRPC via HTTP/1 Enabling Library for Gohelm-charts
Helm charts for StackRox Kubernetes Security Platformcollector
Runtime data collection for the StackRox Kubernetes Security Platform using eBPFcontributions
Samples for customer implementations & integrationsscanner
bsidessf-2020-workshop
Materials for a live workshop at BSidesSF on deployment-level Kubernetes security controlsnetwork-policy-examples
YAML files accompanying the StackRox Network Policies guide.kube-linter-action
GitHub action for automating KubeLinter.blog-examples
Sample code and files from StackRox blog postsansible-demo
Create sales demos on k8s/OpenShift with Ansiblek8s-i-use
Source for k8siuse, a site in the style of caniuse that visualizes GVKs and their fields over different versions of the Kubernetes APIacs-fleet-manager
helmtest
helmtest is a Go-based framework for testing helm charts in various configurationsstackrox-env
Stackrox development environmentberserker
Workload generator for ACS Collectorjenkins-plugin
The StackRox Jenkins Plugin for image scanning and securitydev-docs
kernel-packer
π¦ Crawl and repackage kernel headers for collectorroxctl-installer-action
k8s-cves
Curated repo of Kubernetes CVEscentral-login
prometheus-metric-parser
Utility to parse prometheus metrics and compare them against other metricsworkflow
falcosecurity-libs
Internal Fork of https://github.com/falcosecurity/libsrox-ci-image
istio-cves
dotnet-scraper
.NET scraper houses .NET vulnerabilities, a primitive scraper and a cron job to ensure that we have all the most updated vulnsk8s-istio-cve-pusher
This repo pulls CVEs from NVD, filters them and pushes to stackrox google cloud bucket.junit-parse
Junit parsing CLIinfra
π§οΈ Automated infrastructure and demo provisioningactions
Various Reusable GitHub Actionsnvdtools
bleve
goland-indexes
Shared indexes for stackrox projectautomation-standard
π€ A micro-framework for building standardized cluster automation entrypointsdocker-registry-client
Public fork of github.com/heroku/docker-registry-clientrelease-registry
A mechanism to mark, identify and search release artifacts using Quality Milestones.Love Open Source and this site? Check out how you can help us