Aqua Security는 GitHub에서 다양한 공용 리포지토리를 운영하고 있으며, Go, Shell, TypeScript, Python과 같은 언어로 개발된 여러 보안 도구를 제공합니다. 주요 프로젝트로는 취약점과 비정상 설정을 찾아내는 trivy, Kubernetes 보안 베스트 프랙티스를 검사하는 kube-bench 등이 있습니다.
주요 언어
공개 저장소
trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
tfsec
Tfsec is now part of Trivy
kube-hunter
Hunt for security weaknesses in Kubernetes clusters
tracee
Linux Runtime Security and Forensics using eBPF
cloudsploit
Cloud Security Posture Management (CSPM)
trivy-operator
Kubernetes-native security toolkit
starboard
Superseded by https://github.com/aquasecurity/trivy-operator
trivy-action
Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
kubectl-who-can
Show who has RBAC permissions to perform actions on different resources in Kubernetes
microscanner
Scan your container images for package vulnerabilities with Aqua Security
libbpfgo
eBPF library for Go. Powered by libbpf.
chain-bench
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
cloud-security-remediation-guides
Security Remediation Guides
btfhub
BTFhub, in collaboration with the BTFhub Archive repository, supplies BTF files for all published kernels that lack native support for embedded BTF. This joint effort ensures that even kernels without built-in BTF support can effectively leverage the benefits of eBPF programs, promoting compatibility across various kernel versions.
vuln-list
NVD, Ubuntu, Alpine
trivy-db
이 저장소에 대한 설명이 제공되지 않았습니다.
esquery
An idiomatic Go query builder for ElasticSearch
traceeshark
Deep Linux runtime visibility meets Wireshark
kube-query
[EXPERIMENTAL] Extend osquery to report on Kubernetes
harbor-scanner-trivy
Use Trivy as a plug-in vulnerability scanner in the Harbor registry
docker-bench
Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark
defsec
Trivy's misconfiguration scanning engine
postee
Notice: Postee is no longer under active development or maintenance.
fanal
Static Analysis Library for Containers
cloudsec-icons
A collection of cloud security icons :cloud::lock:
vuln-list-update
이 저장소에 대한 설명이 제공되지 않았습니다.
linux-bench
Checks whether a Linux server according to security best practices as defined in the CIS Distribution-Independent Linux Benchmark
trivy-vscode-extension
A VS Code Extension for Trivy
tfsec-pr-commenter-action
Add comments to pull requests where tfsec checks have failed
manifesto
Use Manifesto to store and query metadata for container images.
go-dep-parser
Dependency Parser for Multiple Programming Languages
lmdrouter
Go HTTP router library for AWS API Gateway-invoked Lambda Functions
btfhub-archive
The BTFhub Archive repository provides BTF files for those published kernels that lack native support for embedded BTF, thereby enhancing the versatility of eBPF programs across different kernel versions.
table
:abacus: Tables for terminals, in Go.
appshield
Security configuration checks for popular cloud native applications and infrastructure.
starboard-lens-extension
Lens extension for viewing Starboard security information
aqua-helm
Helm Charts For Installing Aqua Security Components
trivy-checks
이 저장소에 대한 설명이 제공되지 않았습니다.
tracee-action
Protect GitHub Actions with Tracee
trivy-azure-pipelines-task
Azure Pipelines Task for trivy
deployments
All Aqua deployments options and aquactl configuration
tfsec-sarif-action
이 저장소에 대한 설명이 제공되지 않았습니다.
tfsec-action
Vanilla GitHub action to run tfsec
starboard-octant-plugin
Octant plugin for viewing Starboard security information
cfsec
Static analysis for CloudFormation templates to identify common misconfiguration
community
Aqua Security's open source community
go-version
A Go library for parsing and verifying versions and version constraints.
trivy-operator-lens-extension
https://github.com/aquasecurity/trivy-operator
trivy-mcp
Trivy plugin for starting an MCP server
trivy-java-db
이 저장소에 대한 설명이 제공되지 않았습니다.
aqua-operator
The aqua-operator is a group of controllers that runs within a Kubernetes or Openshift cluster that provides a means to deploy and manage Aqua Security cluster and Components.
vexhub
이 저장소에 대한 설명이 제공되지 않았습니다.
terraform-provider-aquasec
The Aqua Security Provider for Terraform allows you to declaratively define the configuration of your Aqua platform.
trivy-kubernetes
Trivy kubernetes library
trivy-docker-extension
Docker Desktop Extension for Trivy
trivy-aws
이 저장소에 대한 설명이 제공되지 않았습니다.
windows-bench
Checks whether a Windows server according to security best practices as defined in the CIS Distribution-Independent Windows Benchmark
trivy-plugin-referrer
Trivy plugin for OCI referrers
trivy-pipe
Bitbucket Pipe for running Trivy in a Pipeline
helm-charts
Aqua Open Source Helm Chart Repository
chain-bench-action
이 저장소에 대한 설명이 제공되지 않았습니다.
trivy-ci-test
이 저장소에 대한 설명이 제공되지 않았습니다.
vuln-list-nvd
NVD
go-git-pr-commenter
library for adding comments to git PRs
vim-trivy
Vim Plugin for Trivy
vuln-list-redhat
Red Hat security advisories
trivy-plugin-aqua
이 저장소에 대한 설명이 제공되지 않았습니다.
setup-trivy
Set up your GitHub Actions workflow with a specific version of Trivy
k8s-node-collector
이 저장소에 대한 설명이 제공되지 않았습니다.
trivy-sarif-demo
이 저장소에 대한 설명이 제공되지 않았습니다.
trivy-repo
deb/rpm repository for Trivy
circleci-orb-microscanner
Enables scanning of docker builds in CircleCi for OS package vulnerabilities.
go-pep440-version
A golang library for parsing PEP 440 compliant Python versions
go-npm-version
A golang library for parsing npm versions
intellij-trivy
Trivy Plugin for the JetBrains family of IDEs
testdocker
Test utilities for Docker Engine/Registry
terraform-gcp-onboarding
Terraform module to configure Aqua Security’s CSPM and agentless solutions on GCP
amazon-eks-devsecops
이 저장소에 대한 설명이 제공되지 않았습니다.
vuln-list-debian
Debian Security Tracker
secfixes-tracker
Forked from https://gitlab.alpinelinux.org/kaniini/secfixes-tracker
terraform-aws-onboarding
Terraform module to configure Aqua Security’s CSPM and agentless solutions on AWS
tfsec-azure-pipelines-task
An Azure DevOps Task for tfsec
charts
The IBM/charts repository provides helm charts for IBM and Third Party middleware.
vex-repo-spec
VEX Repository Specification
avd-generator
Generator component for AVD
vexhub-crawler
Collect VEX documents and update VEX Hub
trivy-plugin-index
Plugin index for Trivy. This repo is for plugin maintainers.
terraform-azure-onboarding
Terraform module to configure Aqua Security’s CSPM and agentless solutions on Azure
homebrew-trivy
이 저장소에 대한 설명이 제공되지 않았습니다.
vuln-list-aqua
Security advisories from Aqua Security
.github
Default community health files for Aqua Security open source projects
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production. https://dockerbench.com
resources
Various resources about Aqua and it's products
leaky-repo
Benchmarking repo for secrets scanning
csp-integration-samples
Aqua CSP integrations Samples
trivy-chocolatey
Repository for storing Trivy chocolatey deployment config
trivy-release-test
Release Testing
trivy-test-repo
Test repository used in Trivy
pipeline-parser
이 저장소에 대한 설명이 제공되지 않았습니다.
자주 묻는 질문
aquasecurity는 GitHub에서 무엇을 개발하나요?
aquasecurity는 클라우드 네이티브 보안을 위한 다양한 도구를 개발합니다. 주요 프로젝트에는 취약점 스캐너인 trivy와 Kubernetes 보안 검사 도구인 kube-bench가 포함됩니다.
aquasecurity는 어떤 프로그래밍 언어를 사용하나요?
aquasecurity는 주로 Go, Shell, TypeScript, Python과 같은 프로그래밍 언어를 사용하여 리포지토리를 개발합니다. 이러한 언어들은 다양한 보안 도구에 적용됩니다.
aquasecurity의 리포지토리는 공개인가요?
네, aquasecurity의 모든 리포지토리는 공개되어 있으며, 누구나 GitHub에서 접근하여 사용하거나 기여할 수 있습니다. 이로 인해 보안 도구의 투명성과 신뢰성이 강화됩니다.