Compliance
Showing 32 of 68 projects
Database security suite providing field-level encryption, SQL injection prevention, and intrusion detection for sensitive data.
Open-source supply chain security scanner that automatically detects vulnerabilities like Log4Shell in dependencies and notifies via GitHub pull requests.
A lightweight, security-focused BDD test framework for Terraform that enables compliance and negative testing for infrastructure-as-code.
A self-hosted, GDPR-compliant Go tool for secure tokenization and encrypted storage of PII, PHI, PCI, and KYC records.
A self-hosted, GDPR-compliant Go-based vault for secure tokenization and storage of PII, PHI, PCI, and KYC records.
An open-source management platform for discovering, optimizing, and controlling hybrid IT environments.
An open-source policy-as-code tool that validates JSON/YAML data like CloudFormation and Kubernetes configs against custom rules.
A portable, extensible incident response tool that automates forensic artifact collection across Unix-like systems.
A highly scalable, centralized authorization service based on Google Zanzibar for defining, enforcing, querying, and auditing fine-grained access control.
A PHP library for handling EU MOSS tax/VAT calculations, validation, and integration with Laravel and Cashier.
A Terraform module to configure AWS accounts with a secure baseline aligned to CIS AWS Foundations and AWS Foundational Security Best Practices.
A low-level HTTP server library in Rust focused on 100% HTTP compliance and easy server creation.
An open-source license compliance software system and toolkit for scanning licenses, copyrights, and export controls.
A blockchain designed specifically for high-throughput, low-cost stablecoin payments with built-in compliance features.
An AWS IAM to least privilege Terraform execution framework that analyzes usage patterns and generates right-sized IAM configurations.
A comprehensive guide and set of rules for open-sourcing projects, based on Zalando's internal practices and philosophy.
Open-source policy-as-code software for analyzing multi-cloud and SaaS environments using SQL, YAML, and natural language with GPT.
Tool and policy library for validating Google Kubernetes Engine clusters against configuration best practices and scalability limits.
A community-maintained guide to email marketing laws and regulations across different countries, updated for 2024.
A collection of built-in detection rules and policies for Panther, a modern SIEM, enabling security monitoring as code.
A fully open-source audit logs service with an embeddable UI, designed for easy deployment to your own Kubernetes cluster.
Automatic and reliable PostgreSQL data change tracking using Write-Ahead Log and Change Data Capture.
IAMbic is version-control for IAM, centralizing and simplifying cloud access and permissions across AWS, Okta, Azure AD, and Google Workspace.
A protocol-aware proxy that enforces database access policies using Open Policy Agent (OPA) for data security and compliance.
A protocol-aware proxy that enforces fine-grained access policies for databases using Open Policy Agent (OPA).
A Python package for defining and enforcing Policy as Code standards in Terraform configurations.
A Ruby gem for running RSpec, Serverspec, Infrataster, and Capybara tests against Dockerfiles and Docker images.
Open-source design patterns for creating readable, user-friendly privacy notices on websites.
A Go package for validating EU VAT numbers and retrieving VAT rates.
Automatic data change tracking for Prisma with PostgreSQL, enabling audit trails and time travel querying.
Automatic, context-aware data change tracking for Ruby on Rails applications using PostgreSQL.
A Composer plugin that generates accurate CycloneDX Software Bill of Materials (SBOM) for PHP projects.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.