Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 17 Go Compliance Projects
-
immudb
immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
Open-Source-Security-Guide
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
-
copacetic
🧵 CLI tool for directly patching container images using reports from vulnerability scanners
-
xeol
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
-
chainloop
Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.
-
guardian
Guardian is universal data access management tool with automated access workflows and security controls across data stores, analytical systems, and cloud products. (by raystack)
-
conceal
A command line utility that provides a secure method to get your secrets from your existing password manager. :lock:
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Project mention: The API database architecture – Stop writing HTTP-GET endpoints | news.ycombinator.com | 2024-05-10Yeah, I fully agree. The tooling for putting that much logic into the database is just not great. I've been decently happy with Sqitch[0] for DB change management, but even with that you don't really get a good basis for testing some of the logic you could otherwise test in isolation in app code.
I've also tried to rely heavily on the database handling security and authorization, but as soon as you start to do somewhat non-trivial attribute-/relationship-based authorization (as you would find in many products nowadays), it really isn't fun anymore, and you spend a lot of the time you saved on manually building backend routes on trying to fit you authz model into those basic primitives (and avoiding performance bottlenecks). Especially compares to other modern authz solutions like OPA[1] or oso[2] it really doesn't stack up.
[0]: https://github.com/sqitchers/sqitch
[1]: https://www.openpolicyagent.org
[2]: https://www.osohq.com
Project mention: Ask HN: What is your experience of tamper proof systems? | news.ycombinator.com | 2024-01-05
3. tfsec: https://github.com/aquasecurity/tfsec tfsec uses a suite of security checks to scan your Terraform templates, helping to identify potential security issues before infrastructure is deployed.
If you want to validate your resources against the schema of the resources (mind you also crds) you can use kubeconform.
Project mention: Show HN: Bearer Code Security Scanner Add Support for Java, PHP, Go, and Python | news.ycombinator.com | 2023-10-26
Project mention: copacetic: 🧵 CLI tool for directly patching container images using reports from vulnerability scanners | /r/blueteamsec | 2023-11-25
Project mention: Choosing the “old stuff” as plugin SDK for Go in 2023 | news.ycombinator.com | 2023-07-06
You need to do some manual labor as it is not supported by AWS. I hope I peaked your interest to check out the aws-security-posture project.
Go Compliance related posts
-
Rego for beginners: Introduction to Rego
-
Show HN: Bearer Code Security Scanner Add Support for Java, PHP, Go, and Python
-
Everything You Need to Know About the Difference Between OPA's Rego and AWS Cedar
-
Evolving Authorization for Our Advertising Platform
-
SOC2: Drata, Scrut, Vanta
-
OPA (Open Policy Agent) VS selefra - a user suggested alternative
2 projects | 20 Mar 2023 -
Simple, Self-Hosted Centralized Logging
-
A note from our sponsor - InfluxDB
www.influxdata.com | 20 May 2024
Index
What are some of the best open-source Compliance projects in Go? This list will help you:
Project | Stars | |
---|---|---|
1 | OPA (Open Policy Agent) | 9,185 |
2 | immudb | 8,499 |
3 | tfsec | 6,583 |
4 | kubeconform | 1,954 |
5 | bearer | 1,769 |
6 | comply | 1,236 |
7 | Databunker | 1,209 |
8 | Open-Source-Security-Guide | 859 |
9 | copacetic | 809 |
10 | xeol | 322 |
11 | chainloop | 314 |
12 | opa-envoy-plugin | 307 |
13 | reposaur | 280 |
14 | cnspec | 237 |
15 | guardian | 134 |
16 | conceal | 59 |
17 | aws-security-posture | 2 |
Sponsored