An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
Why do you think that https://github.com/aquasecurity/trivy is a good alternative to chain-bench
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
Why do you think that https://github.com/aquasecurity/trivy is a good alternative to chain-bench