Skip to content
/ binauthz-tools Public
forked from viglesiasce/binauthz-tools

Tools for making it easier to work with Binary Authorization in Google Cloud

License

Apache-2.0 license
0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bgood/binauthz-tools

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
cve-checker
cve-checker
 
 
scripts
scripts
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Binary Authorization Tools

CVE Checker - cve-checker/main.go

A Go program that parses the JSON output of the vulnerabilities for an image in Google Container Registry (GCR) and errors out if any of the vulnerabilities are higher than the CVSS threshold.

Check Vulnerabilities Script - scripts/check_vulnerabilities.sh

Wait for a vulnerability scan to complete for a particular image in GCR then run the CVE Checker against it to make sure that no vulnerabilites are higher than the threshold.

Create Attestation Script - scripts/create_attestation.sh

Pulls down an encrypted PGP from Google Cloud Storage then decrypts it and uses it to create an attestation for the image that was passed in.

About

Tools for making it easier to work with Binary Authorization in Google Cloud

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 54.4%
  • Go 42.9%
  • Dockerfile 2.7%