connaisseur
magtape
connaisseur | magtape | |
---|---|---|
3 | 1 | |
418 | 144 | |
0.5% | 0.0% | |
9.0 | 0.0 | |
6 days ago | 8 days ago | |
Go | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
connaisseur
-
Container security best practices: Comprehensive guide
We already mentioned Connaisseur Admission Controller as a way to enforce content trust and reject images that are not signed by trusted sources.
- GitHub - sse-secure-systems/connaisseur: An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
-
Making the Internet more secure one signed container at a time
Admission Controller was based on Connaisseur, heavily modified to work with v2 instead of v1 signatures.
magtape
-
Is it possible to set a per pod min and max request for CPU and memory?
Anyway, just to point out, there is a technical solution for this that you suggested. We are in the process of deploying Magtape which is a policy as code engine based off of OPA. I wasn't even thinking that route, but I'm sure we can write a policy to check requests and make sure they do not cross a certain boundary.
What are some alternatives?
cosign - Code signing and transparency for containers and binaries
OPAL - Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
gatekeeper - 🐊 Gatekeeper - Policy Controller for Kubernetes
pyngrok - A Python wrapper for ngrok
enhancements - Enhancements tracking repo for Kubernetes
dj-stripe - dj-stripe automatically syncs your Stripe Data to your local database as pre-implemented Django Models allowing you to use the Django ORM, in your code, to work with the data making it easier and faster.
gatekeeper-library - 📚 The OPA Gatekeeper policy library
FreeIPA - Mirror of FreeIPA, an integrated security information management solution
cfn_nag - Linting tool for CloudFormation templates
policy-as-code-war - OPA Gatekeeper vs Kyverno
match - :crystal_ball: Scalable reverse image search built on Kubernetes and Elasticsearch
demo-python - Demo of using Cerbos with Python to check access to a holiday request system.