Ecosyste.ms: Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: trivy

Repositories

project-copacetic/copacetic

🧵 CLI tool for directly patching container images using reports from vulnerability scanners

Language: Go - Size: 10.7 MB - Last synced: about 3 hours ago - Pushed: about 6 hours ago - Stars: 809 - Forks: 54

crazy-max/ghaction-container-scan

GitHub Action to check for vulnerabilities in your container image

Language: TypeScript - Size: 4.51 MB - Last synced: about 9 hours ago - Pushed: about 10 hours ago - Stars: 56 - Forks: 11

fatihtokus/scan2html

A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.

Language: HTML - Size: 3.14 MB - Last synced: about 10 hours ago - Pushed: 1 day ago - Stars: 19 - Forks: 3

ks6088ts/template-python

A GitHub template repository for Python

Language: Makefile - Size: 148 KB - Last synced: about 22 hours ago - Pushed: about 23 hours ago - Stars: 0 - Forks: 0

ChristofferNissen/helmper

Import Helm Charts to OCI registries, optionally with vulnerability patching

Language: Go - Size: 37.3 MB - Last synced: about 23 hours ago - Pushed: 1 day ago - Stars: 53 - Forks: 0

owenrumney/lazytrivy

Vulnerability scanning just got lazier

Language: Go - Size: 28.2 MB - Last synced: 1 day ago - Pushed: 1 day ago - Stars: 270 - Forks: 6

bcgov/quickstart-openshift

QuickStart template targeted for OpenShift.

Language: TypeScript - Size: 33.2 MB - Last synced: about 10 hours ago - Pushed: 1 day ago - Stars: 28 - Forks: 4

ruzickap/container-build

Container build repository

Language: JavaScript - Size: 210 KB - Last synced: about 20 hours ago - Pushed: 1 day ago - Stars: 0 - Forks: 0

ruzickap/popular-containers-vulnerability-checks

Vulnerabilities in popular container images

Language: Shell - Size: 4.35 MB - Last synced: about 19 hours ago - Pushed: 2 days ago - Stars: 4 - Forks: 2

go-to-k/image-scanner-with-trivy

This AWS CDK Construct allows you to scan a container image during CDK deployment layer with Trivy

Language: TypeScript - Size: 243 KB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 0 - Forks: 2

pointvy/pointvy

Pointvy is a simple web frontend for Trivy vulnerability scanner.

Language: Python - Size: 372 KB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 7 - Forks: 4

bcgov/quickstart-openshift-backends

Pluggable backends for Go, Java and Python. Can be consumed by bcgov/quickstart-openshift.

Language: HTML - Size: 18.5 MB - Last synced: 4 days ago - Pushed: 4 days ago - Stars: 2 - Forks: 0

studio-b12/barvus

BARe repository VUlnerability Scanner

Language: Shell - Size: 2.93 KB - Last synced: 4 days ago - Pushed: over 1 year ago - Stars: 0 - Forks: 0

giantswarm/starboard-exporter

A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).

Language: Go - Size: 465 KB - Last synced: 4 days ago - Pushed: 4 days ago - Stars: 57 - Forks: 24

bodsch/ansible-trivy

ansible role to install trivy

Language: Python - Size: 38.1 KB - Last synced: 5 days ago - Pushed: 6 days ago - Stars: 0 - Forks: 0

radiofrance/dib

An Opinionated Docker Image Builder

Language: Go - Size: 2.97 MB - Last synced: 1 day ago - Pushed: 1 day ago - Stars: 16 - Forks: 1

dbsystel/trivy-vulnerability-explorer

Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive data table.

Language: Vue - Size: 24.2 MB - Last synced: 5 days ago - Pushed: 6 days ago - Stars: 100 - Forks: 37

thriving-dev/java-library-template

🎨 Java library template • Gradle Kotlin DSL • GitHub Actions CI/CD to build, release & publish to Maven Central • Renovate • Trivy • Javadoc (Pages) • Issue & PR Templates

Language: Java - Size: 486 KB - Last synced: 12 days ago - Pushed: 12 days ago - Stars: 23 - Forks: 2

eraser-dev/eraser

🧹 Cleaning up images from Kubernetes nodes

Language: Go - Size: 21.3 MB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 436 - Forks: 56

l-with/DevOps-GitLab-CI-Artifacts

Language: Shell - Size: 169 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 1 - Forks: 0

ambient-innovation/gitlab-trivy-license-checks

License checks for GitLab-CI - Generates a CodeClimate json reporting on (potential) licensing issues with your software dependencies

Language: Smarty - Size: 75.2 KB - Last synced: 21 days ago - Pushed: 22 days ago - Stars: 1 - Forks: 2

0GiS0/scan-docker-vulnerabilities

Language: Shell - Size: 782 KB - Last synced: 25 days ago - Pushed: 25 days ago - Stars: 1 - Forks: 0

luafanti/source-code-scanning-and-analysis-action

Workflow responsible for launching static code analysis, generating SBOM and scanning for vulnerabilities. Can be applied to projects that use Gradle and Kotlin.

Size: 7.81 KB - Last synced: 26 days ago - Pushed: over 1 year ago - Stars: 0 - Forks: 0

orladigital/trivy-maven-plugin

This is a Maven plugin developed to simplify the process of scanning Docker images for vulnerabilities using Trivy.

Language: Java - Size: 110 MB - Last synced: 15 days ago - Pushed: 15 days ago - Stars: 11 - Forks: 1

k1LoW/trivy-db-to

trivy-db-to is a tool for migrating/converting vulnerability information from Trivy DB to other datasource.

Language: Go - Size: 520 KB - Last synced: 19 days ago - Pushed: 23 days ago - Stars: 23 - Forks: 9

mathieu-benoit/cartservice 📦

My own cartservice coming from the GoogleCloudPlatform/microservices-demo repository

Language: C# - Size: 346 KB - Last synced: about 1 month ago - Pushed: over 1 year ago - Stars: 0 - Forks: 2

turbot/steampipe-plugin-trivy

Use SQL to instantly query advisories, vulnerabilities, packages, findings and more using Trivy. Open source CLI. No DB required.

Language: Go - Size: 899 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 8 - Forks: 0

emirhandogandemir/software-supply-chain-security-java

This repo contains the technology stack and its usage for software supply chain security of a Java application

Language: Java - Size: 198 KB - Last synced: about 1 month ago - Pushed: 5 months ago - Stars: 7 - Forks: 1

HummerRisk/HummerRisk

HummerRisk 是云原生安全平台，包括混合云安全治理和云原生安全检测。

Language: Java - Size: 51.1 MB - Last synced: about 1 month ago - Pushed: 2 months ago - Stars: 1,741 - Forks: 286

aquasecurity/harbor-scanner-trivy

Use Trivy as a plug-in vulnerability scanner in the Harbor registry

Language: Go - Size: 28.5 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 196 - Forks: 68

komodorio/validkube

ValidKube combines the best open-source tools to help ensure Kubernetes YAML best practices, hygiene & security.

Language: TypeScript - Size: 703 KB - Last synced: about 1 month ago - Pushed: 4 months ago - Stars: 730 - Forks: 59

zufardhiyaulhaq/asdf-trivy

Trivy plugin for the asdf version manager

Language: Shell - Size: 11.7 KB - Last synced: 19 days ago - Pushed: over 2 years ago - Stars: 5 - Forks: 2

aquasecurity/trivy-azure-pipelines-task

An Azure Pipelines Task for trivy

Language: TypeScript - Size: 917 KB - Last synced: about 1 month ago - Pushed: 4 months ago - Stars: 39 - Forks: 26

praveensirvi1212/DevOps_MasterPiece-CI-with-Jenkins

DevOps-MasterPiece Project using Git, GitHub, Jenkins, Maven, JUnit, SonarQube, Jfrog Artifactory, Docker, Trivy, AWS S3, Docker Hub, GitHub CLI, EKS, ArgoCD, Prometheus, Grafana, Slack and Hashicorp Vault

Language: HTML - Size: 8.63 MB - Last synced: 15 days ago - Pushed: 10 months ago - Stars: 54 - Forks: 88

jz543fm/kali-dockerized

Kali Linux in Docker + Ubuntu 22.04 in Docker for Bug Bounty, Penetration Testing, Security Research, Computer Forensics and Reverse Engineering. Kali Linux inside with Docker with or without support with systemd, repository also contains Proof of Concept with kind (Kubernetes in Docker) to test Kali Linux with enabled systemd in K8s cluster

Language: Dockerfile - Size: 83 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 13 - Forks: 1

moabukar/CKS-Exercises-Certified-Kubernetes-Security-Specialist

A set of curated exercises to help you prepare for the CKS exam

Language: Shell - Size: 178 KB - Last synced: about 1 month ago - Pushed: over 1 year ago - Stars: 213 - Forks: 134

Saurabhkr952/dev-portfolio

DevOps Project: AWS EKS, CI/CD, Docker, Kubernetes, Argo CD, Git, Terraform, Prometheus, Grafana, and more. Build a Dev Portfolio with this powerful tech stack.

Language: JavaScript - Size: 41.7 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 65 - Forks: 22

georg-jung/trivy-azure-pipelines-task Fork of aquasecurity/trivy-azure-pipelines-task

An Azure Pipelines Task for trivy

Language: TypeScript - Size: 961 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 3 - Forks: 1

edersonbrilhante/vilicus

Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.

Language: SCSS - Size: 7.29 MB - Last synced: about 1 month ago - Pushed: over 1 year ago - Stars: 84 - Forks: 7

ohnotnow/trivitall

Security scan all docker images running in a swarm

Language: Python - Size: 3.91 KB - Last synced: about 2 months ago - Pushed: about 4 years ago - Stars: 5 - Forks: 0

m9sweeper/m9sweeper

m9sweeper is a free and easy kubernetes security platform.

Language: TypeScript - Size: 23.1 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 215 - Forks: 20

flavienbwk/trivy-docker-compose

Deployment-ready docker configuration and instructions to use Trivy on your infrastructure and CIs.

Language: Dockerfile - Size: 124 KB - Last synced: 19 days ago - Pushed: almost 2 years ago - Stars: 2 - Forks: 0

HIMA10SHREE/JENKINS-CICD-PIPELINE-AND-DEPLOY-TO-KUBERNETES-TAKING-SECURITY-PRACTICES

This is a end-to-end cicd pipeline for deploying netflix application to kubernetes taking cake of security best practices and monitoring

Language: TypeScript - Size: 7.43 MB - Last synced: 2 months ago - Pushed: 2 months ago - Stars: 0 - Forks: 0

ks6088ts/template-go

A GitHub template repository for Go

Language: Makefile - Size: 27.3 KB - Last synced: 11 days ago - Pushed: 2 months ago - Stars: 0 - Forks: 0

mchmarny/vimp

Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.

Language: Go - Size: 46.9 MB - Last synced: about 2 months ago - Pushed: 7 months ago - Stars: 54 - Forks: 4

sighupio/trivy-offline

Trivy offline builder. Fits perfectly in your CI System

Language: Dockerfile - Size: 27.3 KB - Last synced: 4 days ago - Pushed: 7 months ago - Stars: 16 - Forks: 9

akiltipu/secure-shop-devops

CI/CD Pipeline for SecureShop Java App with Jenkins, Maven, Git, Trivy, SonarQube, Kubernetes, Nexus, ECR, Amazon EKS

Language: Java - Size: 5.15 MB - Last synced: 2 months ago - Pushed: 2 months ago - Stars: 0 - Forks: 0

lazy-actions/gitrivy

GitHub Issue + Trivy Action

Language: TypeScript - Size: 1.05 MB - Last synced: 2 months ago - Pushed: over 1 year ago - Stars: 55 - Forks: 23

security-chain-demo/github-actions

Holds GitHub Actions

Size: 42 KB - Last synced: 2 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0

mohdumair8896/Netflix-Clone

DevSecOps Project to setup Netflix clone on AWS using CICD, Security, Monitoring and GitOps

Language: TypeScript - Size: 7.41 MB - Last synced: about 1 month ago - Pushed: 3 months ago - Stars: 0 - Forks: 0

schnatterer/cks-short-tips

Five short tips for passing the CKS exam (Certified Kubernetes Security Specialist)

Size: 7.81 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0

jenkinsci/harbor-plugin

Harbor Plugin for Jenkins

Language: Java - Size: 307 KB - Last synced: 19 days ago - Pushed: 19 days ago - Stars: 4 - Forks: 1

walidshaari/Certified-Kubernetes-Security-Specialist

Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.

Language: AGS Script - Size: 186 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 1,885 - Forks: 525

ambient-innovation/gitlab-trivy-security-checks

Gitlab's included container scanning only scans docker images and can't read lockfiles. To fix this, you need to run a Trivy instance yourself and tell it to scan the filesystem instead. This config template can be included in your .gitlab-ci.yml to get the scanning job for free (similar to how the gitlab container scanning thing works).

Size: 207 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 1 - Forks: 3

dsrathore1/Blog-Website-using-DevOps-Practices

📝 My Awesome Blog Website: A cutting-edge platform built with Kubernetes, Docker, Next.js, and PostgreSQL, ensuring secure and scalable sharing of thoughts and ideas. ✨ Join the conversation and explore captivating content in a seamless browsing experience!

Language: JavaScript - Size: 7.27 MB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 1 - Forks: 0

aws-samples/aws-codepipeline-devsecops-amazoneks

This solution provides an overview of DevSecOps CICD Pipeline Implementation using AWS DevOps Services and other tools

Language: Smarty - Size: 1.02 MB - Last synced: about 1 month ago - Pushed: 6 months ago - Stars: 14 - Forks: 17

jeetu844/Shopping-reactJS-DevOps

Jenkins pipeline | Devops project using Git, Github, Jenkins, SonarQube, Trivy, Owasp, K8s, Argocd, Gmail, Slack, Splunk, Prometheus, Grafana tools

Language: JavaScript - Size: 75.6 MB - Last synced: 4 months ago - Pushed: 4 months ago - Stars: 0 - Forks: 0

selvanayaki678/employee-portal-crud

An Employee Management Application built with React.js, Node.js, and MySQL, deployed on Amazon EKS using Jenkins as the CI/CD tool.

Language: JavaScript - Size: 376 KB - Last synced: 4 months ago - Pushed: 4 months ago - Stars: 1 - Forks: 0

macielo-bumalay/DevOps-Project-1

This is a CI-CD pipeline to deploy to a Java based Application using DevOps tools (A realtime CI/CD Project | DecSecOps )

Size: 1.45 MB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0

sirishacyd/aws-ansible-jenkins

Efficient AWS Infrastructure Management with Ansible and Jenkins

Language: HCL - Size: 9.74 MB - Last synced: 4 months ago - Pushed: 4 months ago - Stars: 0 - Forks: 0

mfreeman451/trivy-streamlit

A streamlit-based app for trivy scanner results 🔒

Language: Python - Size: 351 KB - Last synced: about 1 month ago - Pushed: 4 months ago - Stars: 2 - Forks: 0

Adeyomola/cms-azure-pipeline

Azure DevOps DevSecOps Pipeline for a Content Management System (WordPress)

Language: HCL - Size: 19.4 MB - Last synced: 5 months ago - Pushed: 5 months ago - Stars: 0 - Forks: 0

darjidhruv26/DevSecOps-Pipeline

Optimize your video streaming app with our CI/CD DevSecOps project. Streamline development with continuous integration, deploy effortlessly, and fortify security seamlessly. Elevate user experience with rapid updates and robust protection.

Language: JavaScript - Size: 431 KB - Last synced: 4 months ago - Pushed: 5 months ago - Stars: 0 - Forks: 0

ai99guru-gsk/devsecops_beginner

A beginner friendly course for mastering DevSecOps. It covers basics of CI / CD and details kubernetes in depth. If you master everything in this course, you should be industry ready.

Language: JavaScript - Size: 10.7 KB - Last synced: 4 months ago - Pushed: 5 months ago - Stars: 0 - Forks: 0

nahidkishore/Node-React-Full-Stack-App

we'll explore how to set up Continuous Integration and Continuous Deployment (CI/CD) for our full-stack Node.js and React.js application. We'll create a pipeline script to deploy our application in a Docker container while leveraging SonarQube for code quality checks, OWASP Dependency Check for examining code dependencies and security vulnerabiliti

Language: HTML - Size: 694 KB - Last synced: about 1 month ago - Pushed: 3 months ago - Stars: 0 - Forks: 0

htekgulds/trivy-dashboard

Simple GUI for the Kubernetes Reports Trivy Operator Generates

Language: JavaScript - Size: 75.2 KB - Last synced: 27 days ago - Pushed: 5 months ago - Stars: 1 - Forks: 0

kac89/vulnrepo

VULNRΞPO - Free vulnerability report generator and repository end-to-end encrypted. Complete templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, methodologies and much more!

Language: TypeScript - Size: 4.44 MB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 340 - Forks: 83

bricklanetech/github.action.security-scan

Composite action for running security scan

Size: 46.9 KB - Last synced: 5 months ago - Pushed: 9 months ago - Stars: 0 - Forks: 0

lucasafonsokremer/trivy-vulnerability-exporter

A Prometheus Exporter that collects all vulnerabilities detected by aquasecurity/trivy in kubernetes clusters

Language: Go - Size: 607 KB - Last synced: 4 months ago - Pushed: over 1 year ago - Stars: 11 - Forks: 0

AbdelatifAitBara/ProjectC

Deploy WordPress & WooCommerce Microserrvices On AWS, Using DevSecOps Methodology.

Language: Python - Size: 9.17 MB - Last synced: 5 months ago - Pushed: 5 months ago - Stars: 1 - Forks: 0

lpsm-dev/azure-pipelines

✨ Azure DevOps Pipeline - Docker Build, Trivy Scan, Secret Detection, Sonar, Kubernetes Deploy and others Steps

Size: 346 KB - Last synced: about 1 month ago - Pushed: 10 months ago - Stars: 6 - Forks: 1

darjidhruv26/game-v1

Language: JavaScript - Size: 433 KB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 0 - Forks: 0

yousabu/DevSecOps-Project

DevSecOps Project to setup Netflix clone on AWS using CICD, Security, Monitoring and GitOps

Language: TypeScript - Size: 107 MB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 0 - Forks: 0

adityadhopade/tic-tac-toe-game

CICD of TIC-TAC-TOE game on Github Actions

Language: JavaScript - Size: 334 KB - Last synced: 27 days ago - Pushed: 7 months ago - Stars: 3 - Forks: 5

hnts/vulnerability-exporter

A Prometheus Exporter for managing vulnerabilities in kubernetes by using trivy

Language: Go - Size: 497 KB - Last synced: 2 months ago - Pushed: over 2 years ago - Stars: 26 - Forks: 2

ThomasVitale/cartographer-tekton-catalog 📦

A set of Tekton pipelines and tasks to support testing, scanning, delivering and deploying applications.

Language: Makefile - Size: 42 KB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 0 - Forks: 0

devopstales/trivy-operator

Kubernetes Operator based on the open-source container vulnerability scanner Trivy.

Language: Python - Size: 44.5 MB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 44 - Forks: 13

m-mizutani/vulnivore

GitHub issue manager from vulnerability scan results for private repositories

Language: Go - Size: 170 KB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 15 - Forks: 0

aquasecurity/trivy-docker-extension

Docker Desktop Extension for Trivy

Language: TypeScript - Size: 8.41 MB - Last synced: about 1 month ago - Pushed: 10 months ago - Stars: 18 - Forks: 6

mmul-it/trivy-admission-webhook

Python Kubernetes Admission webhook using Trivy

Language: Python - Size: 10.7 KB - Last synced: 7 months ago - Pushed: 7 months ago - Stars: 1 - Forks: 0

sidd-harth/kubernetes-devops-security

Udemy Course on DevSecOps

Language: Java - Size: 313 KB - Last synced: 6 months ago - Pushed: 7 months ago - Stars: 51 - Forks: 1,205

VexStore/image_scan_reports

Collection of Container Vulnerability Scans of Common Images Using Different Scanners

Language: Python - Size: 5.37 MB - Last synced: 9 months ago - Pushed: 9 months ago - Stars: 0 - Forks: 0

qaware/secure-devex22 Fork of lreimer/secure-devex22

Demo repository for my talk at the Heise Developer Experience 2022 conference.

Size: 128 KB - Last synced: 9 months ago - Pushed: over 1 year ago - Stars: 2 - Forks: 1

bogdanbarna/container-demo 📦

This repository contains a couple of container demos for authoring effective docker images.

Language: Shell - Size: 21.5 KB - Last synced: about 1 month ago - Pushed: about 1 year ago - Stars: 0 - Forks: 1

snigdhasambitak/cks

Practice questions for Certified Kubernetes Security Specialist (CKS) exam

Size: 1.36 MB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 23 - Forks: 10

Related Keywords

trivy 127 docker 67 kubernetes 45 security 32 sonarqube 21 jenkins 17 aws 16 terraform 14 devsecops 13 github-actions 13 cicd 12 vulnerability 12 security-tools 12 containers 11 prometheus 11 devops 10 vulnerability-scanners 10 grafana 10 falco 9 snyk 9 dockerfile 8 python 8 helm 8 container 7 trivy-scan 7 hacktoberfest 7 kube-bench 7 docker-image 6 grype 6 eks 6 argocd 6 docker-compose 6 cosign 5 checkov 5 hadolint 5 eks-cluster 5 sbom 5 git 5 kubectl 5 gitlab 5 static-analysis 4 apparmor 4 slack 4 vulnerability-management 4 postgresql 4 k8s 4 ansible 4 clair 4 java 4 security-vulnerability 4 anchore 4 ci 4 nodejs 4 github 4 mysql 4 clean-code 4 azure 4 cks 4 go 4 sast 4 scanner 4 podman 4 openshift 3 scan 3 scan-images 3 azure-devops 3 oci-image 3 yaml 3 prometheus-exporter 3 docker-scanner 3 flask 3 reactjs 3 cloud 3 security-audit 3 azure-pipelines 3 container-security 3 bash 3 cloud-native 3 owasp 3 npm 3 vulnerability-scanner 3 gitlab-ci 3 typescript 3 maven 3 tekton 3 image 3 pipeline 3 seccomp 3 vault 3 cve 3 golang 3 vulnerability-detection 3 vilicus 3 security-scanner 3 opa 3 best-practices 2 makefile 2 extension 2 azure-pipelines-task 2 harbor 2