Open Source Cloud Native Application Protection Platform (CNAPP)
-
Updated
Jul 3, 2024 - TypeScript
Open Source Cloud Native Application Protection Platform (CNAPP)
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Open Source Cloud Security
The Secure Coding Framework
Enhance the security of your web applications effortlessly with AWS Firewall Factory. Safeguard your valuable assets through seamless WAF deployment, updates, and staging, all centrally managed with AWS Firewall Manager.
Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build custom dashboards with code.
The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
Kubernetes Common Configuration Scoring System
This npm package reads the NuGet dependencies of a .NET project, and generates a dependencies tree object.
CAST is an API security tool for analyzing Kubernetes API traffic for authentication vulnerabilities such as reused credentials.
Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayFrontend contains source code of GUI created in Angular 8 and based on ngxadmin framework.
Examples of AWS CDK/CloudFormation and other goodies related to security 🔐, devops 🔧 and cloud ⛅️ development
GitArmor is a handy tool that makes it easy to assess the secure setup of your DevOps platform.
Run this GitHub action to validate your Kubernetes resources with the Monokle SARIF validator.
Venafi Machine Identity Extension for Azure DevOps Pipelines
Developed a Chat GPT Clone Application, implemented the DevSecOps practices for deploying on Docker and Kubernetes using Jenkins CI/CD Pipeline.
SECR's website.
Add a description, image, and links to the devsecops topic page so that developers can more easily learn about it.
To associate your repository with the devsecops topic, visit your repo's landing page and select "manage topics."