| Tool | Notes |
|---|---|
| cert-manager | Automatically provision and manage TLS certificates in Kubernetes |
| dex | OpenID Connect Identity (OIDC) and OAuth 2.0 Provider |
| in-toto | framework to protect supply chain integrity |
| keylime | Bootstrap & Maintain Trust on the Edge / Cloud and IoT |
| kyverno | Kubernetes Native Policy Management |
| parsec | Platform AbstRaction for SECurity service platform agnostic API to hardware security and cryptographic services |
https://landscape.cncf.io/?category=security-compliance&grouping=category