Public GitHub footprint of Aqua Security

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

Tfsec is now part of Trivy

Hunt for security weaknesses in Kubernetes clusters

Linux Runtime Security and Forensics using eBPF

Cloud Security Posture Management (CSPM)

Kubernetes-native security toolkit

Superseded by https://github.com/aquasecurity/trivy-operator

Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities

Show who has RBAC permissions to perform actions on different resources in Kubernetes

Scan your container images for package vulnerabilities with Aqua Security

eBPF library for Go. Powered by libbpf.

An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.

Security Remediation Guides

BTFhub, in collaboration with the BTFhub Archive repository, supplies BTF files for all published kernels that lack native support for embedded BTF. This joint effort ensures that even kernels without built-in BTF support can effectively leverage the benefits of eBPF programs, promoting compatibility across various kernel versions.

NVD, Ubuntu, Alpine

No description provided for this repository.

An idiomatic Go query builder for ElasticSearch

Deep Linux runtime visibility meets Wireshark

[EXPERIMENTAL] Extend osquery to report on Kubernetes

Use Trivy as a plug-in vulnerability scanner in the Harbor registry

Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark

Trivy's misconfiguration scanning engine

Notice: Postee is no longer under active development or maintenance.

Static Analysis Library for Containers

A collection of cloud security icons :cloud::lock:

No description provided for this repository.

Checks whether a Linux server according to security best practices as defined in the CIS Distribution-Independent Linux Benchmark

A VS Code Extension for Trivy

Add comments to pull requests where tfsec checks have failed

Use Manifesto to store and query metadata for container images.

Dependency Parser for Multiple Programming Languages

Go HTTP router library for AWS API Gateway-invoked Lambda Functions

The BTFhub Archive repository provides BTF files for those published kernels that lack native support for embedded BTF, thereby enhancing the versatility of eBPF programs across different kernel versions.

:abacus: Tables for terminals, in Go.

Security configuration checks for popular cloud native applications and infrastructure.

Lens extension for viewing Starboard security information

Helm Charts For Installing Aqua Security Components

No description provided for this repository.

Protect GitHub Actions with Tracee

Azure Pipelines Task for trivy

All Aqua deployments options and aquactl configuration

No description provided for this repository.

Vanilla GitHub action to run tfsec

Octant plugin for viewing Starboard security information

Static analysis for CloudFormation templates to identify common misconfiguration

Aqua Security's open source community

A Go library for parsing and verifying versions and version constraints.

https://github.com/aquasecurity/trivy-operator

Trivy plugin for starting an MCP server

No description provided for this repository.

The aqua-operator is a group of controllers that runs within a Kubernetes or Openshift cluster that provides a means to deploy and manage Aqua Security cluster and Components.

No description provided for this repository.

The Aqua Security Provider for Terraform allows you to declaratively define the configuration of your Aqua platform.

Trivy kubernetes library

Docker Desktop Extension for Trivy

No description provided for this repository.

Checks whether a Windows server according to security best practices as defined in the CIS Distribution-Independent Windows Benchmark

Trivy plugin for OCI referrers

Bitbucket Pipe for running Trivy in a Pipeline

Aqua Open Source Helm Chart Repository

No description provided for this repository.

No description provided for this repository.

NVD

library for adding comments to git PRs

Vim Plugin for Trivy

Red Hat security advisories

No description provided for this repository.

Set up your GitHub Actions workflow with a specific version of Trivy

No description provided for this repository.

No description provided for this repository.

deb/rpm repository for Trivy

Enables scanning of docker builds in CircleCi for OS package vulnerabilities.

A golang library for parsing PEP 440 compliant Python versions

A golang library for parsing npm versions

Trivy Plugin for the JetBrains family of IDEs

Test utilities for Docker Engine/Registry

Terraform module to configure Aqua Security’s CSPM and agentless solutions on GCP

No description provided for this repository.

Debian Security Tracker

Forked from https://gitlab.alpinelinux.org/kaniini/secfixes-tracker

Terraform module to configure Aqua Security’s CSPM and agentless solutions on AWS

An Azure DevOps Task for tfsec

The IBM/charts repository provides helm charts for IBM and Third Party middleware.

VEX Repository Specification

Generator component for AVD

Collect VEX documents and update VEX Hub

Plugin index for Trivy. This repo is for plugin maintainers.

Terraform module to configure Aqua Security’s CSPM and agentless solutions on Azure

No description provided for this repository.

Security advisories from Aqua Security

Default community health files for Aqua Security open source projects

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production. https://dockerbench.com

Various resources about Aqua and it's products

Benchmarking repo for secrets scanning

Aqua CSP integrations Samples

Repository for storing Trivy chocolatey deployment config

Release Testing

Test repository used in Trivy

No description provided for this repository.