issues
search
aquasecurity
/
chain-bench
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
Apache License 2.0
712
stars
63
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Show showing all columns in the CLI table
#77
MartinPetkov
closed
1 year ago
1
Not implemented: "3.2.3: Ensure packages are automatically scanned for license implications"
#76
MartinPetkov
opened
1 year ago
1
Update README.md
#75
morwn
closed
1 year ago
0
CIS-Software-Supply-Chain-Security-Guide-v1.0.pdf link is broken
#74
FrimIdan
closed
1 year ago
2
Fix demo.gif width
#73
morwn
closed
1 year ago
0
Add identifiers to the report metadata section
#71
rgreinho
closed
1 year ago
5
add the abilty to get branch name as a flag
#70
MorAlon1
closed
1 year ago
0
Update release.yaml
#68
naortalmor1
closed
2 years ago
0
Duplicate section heading in PDF
#67
ThisIsMissEm
closed
1 year ago
2
Add homebrew release with goreleaser
#65
itaywol
closed
2 years ago
0
Code signing
#64
krol3
opened
2 years ago
2
Add support to SLSA compliance
#63
krol3
opened
2 years ago
3
Chain Bench score
#62
orizerah
opened
2 years ago
1
Add the ability to get branch name as parameter
#61
MorAlon1
closed
1 year ago
0
chore: add ref to github actions in readme
#59
hazcod
closed
2 years ago
2
check host exist
#58
MorAlon1
closed
2 years ago
0
chain bench config file and output assertion rules
#57
itaywol
opened
2 years ago
2
Bump github.com/open-policy-agent/opa from 0.41.0 to 0.42.0
#56
dependabot[bot]
closed
2 years ago
0
scan: segmentation fault while fetching authorized user
#55
Dentrax
closed
2 years ago
2
scan: ability to local directory
#54
Dentrax
opened
2 years ago
4
update demo gif
#53
morwn
closed
2 years ago
0
Add a Markdown version of the 'CIS Software Supply Chain Security Guide'
#52
ZackKanter
closed
2 years ago
1
fix - missing permission for branch protection present false status
#51
morwn
closed
2 years ago
0
add permalinks for checks URL
#50
morwn
closed
2 years ago
0
(fix) 4.2 control name
#48
morwn
closed
2 years ago
0
Support Chain-bench for repositories owned by User
#47
morwn
closed
2 years ago
0
make the keys in the json output lowercase
#46
naortalmor1
closed
2 years ago
0
Check entity is initialize before checking rules inside
#45
MorAlon1
closed
2 years ago
0
Cli logger adjustments
#44
VaismanLior
closed
2 years ago
1
Non-conventional JSON format
#43
rgreinho
closed
2 years ago
1
Indent JSON
#42
rgreinho
closed
2 years ago
3
A GitHub Action support
#41
morwn
closed
2 years ago
3
Add CIS Benchmark to README
#40
morwn
closed
2 years ago
1
Add metedata to the report file
#39
rgreinho
closed
2 years ago
2
The result file has no date/identifier
#38
rgreinho
closed
2 years ago
2
Give a final rating
#37
rgreinho
closed
2 years ago
2
missing community standard checks
#36
rgreinho
closed
2 years ago
1
Remediation instructions should be permalinks
#35
rgreinho
closed
2 years ago
3
Provide a directly actionable solution whenever possible as part of the remediation
#34
rgreinho
opened
2 years ago
1
Adjust CLI logging level
#33
rgreinho
closed
2 years ago
4
false positive when the endpoint is not accessible (e.g. not enough permissions)
#32
rgreinho
closed
2 years ago
16
chain-bench only works for organizations
#31
rgreinho
closed
2 years ago
1
(fix) CIS link in README
#29
morwn
closed
2 years ago
0
add CIS links in README
#28
morwn
closed
2 years ago
0
fix(4.2.5): filter out anonymous packages from different repositories
#27
morwn
closed
2 years ago
0
feat(WASM): add wasm capabilities, and goreleaser implementation for wasm release
#24
itaywol
closed
2 years ago
1
Feature: GitHub Action
#23
hazcod
closed
2 years ago
1
feat(dockerfile): add dockerfile
#22
itaywol
closed
2 years ago
1
change all rule to same format
#21
MorAlon1
closed
2 years ago
1
improve: TESTS COVERAGE add tests coverage to makefile and build workflow.
#20
itaywol
closed
2 years ago
1
Previous
Next