DevGuard Operator

This policy checks if the CIA (Confidentiality, Integrity, Availability) requirements are set in DevGuard for the asset.

CIA requirements set for asset

This policy checks if container scanning was executed.

Container scanning executed

This policy checks if a current SBOM (not older than one month) is present.

Current SBOM is present

This policy checks if the build was done from a signed commit.

Build from signed source

This policy checks if a notification channel is configured for new vulnerabilities.

Notification channel for new vulnerabilities

This policy checks if code review is performed for changes on the default branch.

Code review for changes on default branch

This policy checks if software composition analysis was executed

Software composition analysis executed

This policy checks if branch protection is enabled for the default branch.

Branch protection enabled

This policy checks if secret scanning was executed.

Secret scanning executed

This policy checks if there is no violation against the license allow list.

Only OSI approved licenses

This is a scan for Devguard CI/CD components in a GitLab project, aimed at testing whether these components function correctly.

 Devguard-Pipeline

Devguard Postgresql

The documentation for the DevGuard Project

devguard-documentation

The scanner component of the devguard project

devguard-scanner

devguard-web

devguard

devguard-action

Devguard-Pipeline

Badge API Documentation

Badge API

Badge API Programm ZenDiS

quay.io/jetstack/cert-manager-acmesolver

ghcr.io/l3montree-dev/devguard-operator

ghcr.io/l3montree-dev/devguard-postgresql

ghcr.io/l3montree-dev/devguard

docker.io/oryd/kratos

Devguard

Robot User

Badge-API

Lars Hermges

Patrick Rissmann

Sebastian Kawelke

Tim Bastin

David Luhmer

Refaei Shikho

Frédéric Noppe

refoo0

timbastin

seb-kw

Frederic-Kenji

devguard-bot-dev[bot]

L3montree Cybersecurity

Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

Devguard
Project

Subprojects & Repositories

DevGuard Operator

Devguard-Pipeline

Devguard Postgresql

devguard-documentation

devguard-scanner

devguard-web

devguard

devguard-action