devguard

This policy checks if the build was done from a signed commit.

Build from signed source

This policy checks if branch protection is enabled for the default branch.

Branch protection enabled

This policy checks if the CIA (Confidentiality, Integrity, Availability) requirements are set in DevGuard for the asset.

CIA requirements set for asset

This policy checks if code review is performed for changes on the default branch.

Code review for changes on default branch

This policy checks if container scanning was executed.

Container scanning executed

This policy checks if a current SBOM is present.

Current SBOM is present

This policy checks if there is no violation against the license allow list.

No violation against license allow list

This policy checks if a notification channel is configured for new vulnerabilities.

Notification channel for new vulnerabilities

This policy checks if secret scanning was executed.

Secret scanning executed

This policy checks if software composition analysis was executed

Software composition analysis executed

devguard-web

devguard-action

This is a scan for Devguard CI/CD components in a GitLab project, aimed at testing whether these components function correctly.

 Devguard-Pipeline

The documentation for the DevGuard Project

devguard-documentation

DevGuard Operator

Devguard Postgresql

Devguard-Pipeline

quay.io/jetstack/cert-manager-acmesolver

ghcr.io/l3montree-dev/devguard-operator

ghcr.io/l3montree-dev/devguard-postgresql

ghcr.io/l3montree-dev/devguard

docker.io/oryd/kratos

devguard-scanner

Devguard

Robot User

OpenCoDE

Lars Hermges

Patrick Rissmann

Sebastian Kawelke

Tim Bastin

Refaei Shikho

Frédéric Noppe

refoo0

l3montree-robot

timbastin

seb-kw

devguard-bot-dev[bot]