Skip to content
OpenCatalogcurated by FLOSSK
Explore

Browse & filter

Filter by platform, license text, maturity, maintenance cadence, and editorial tags like privacy-focused or self-hosted. Search matches names, summaries, tags, and use cases.

11 tools match your filters

Top pick

Cloud-native runtime security for Linux/Kubernetes: syscall and K8s audit rules with Falcoctl and ecosystem outputs.

kubernetesruntimecontainerscncfdetection
Also strong

Linux runtime security using eBPF to trace OS and container events with prebuilt signatures and pipeline exports.

ebpfruntimecontainerslinuxdetection
Top pick

All-in-one scanner for container images, IaC, Kubernetes manifests, SBOMs, and VM OS packages with CI integrations.

devsecopscontainersiacvulnerabilityscanner
Also strong

Vulnerability scanner for container images and filesystems using Anchore’s vulnerability DB and Syft SBOM input.

vulnerabilitycontainerssbomci
Also strong

CLI and library for generating SBOMs (SPDX, CycloneDX) from images, directories, and archives.

sbomsupply-chaincompliancecontainers
Also strong

Static analysis engine for container images: layer indexing and vulnerability matching against NVD and distro feeds.

containersregistryvulnerabilityscanner
Honorable mention

Container-native CI/CD using Docker pipelines and YAML (maintained under Harness—verify repo and license for your use).

cicdcontainers