dockle
fortiscan
Our great sponsors
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dockle
-
A beginner's question : am I doing things the right way ?
Check out dockle; https://github.com/goodwithtech/dockle
-
21 Best Practises in 2021 for Dockerfile
Dockle
fortiscan
What are some alternatives?
trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
dnstake - DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
hadolint - Dockerfile linter, validate inline bash, written in Haskell
gitleaks - Protect and discover secrets using Gitleaks 🔑
fortigate_exporter - Prometheus exporter for Fortigate firewalls
repo-security-scanner - CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys
fortigate - Script and stuff for Fortigate firewalls
argocd-image-updater - Automatic container image update for Argo CD
go-formatter - A curated list of awesome Go frameworks, libraries and software
errchkjson - Go linter that checks types that are json encoded - reports unsupported types and unnecessary error checks
grype - A vulnerability scanner for container images and filesystems