From 7559cfefcd40a9de8afb37ff5d3803077ddb4d1b Mon Sep 17 00:00:00 2001 From: fabacab Date: Mon, 13 Jul 2020 20:15:24 -0400 Subject: [PATCH] Add SOPS, alphabetize DevSecOps section. --- README.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 0a47798..3b8b469 100644 --- a/README.md +++ b/README.md @@ -90,10 +90,11 @@ See also [awesome-devsecops](https://github.com/devsecops/awesome-devsecops). - [DefectDojo](https://www.defectdojo.org/) - Application vulnerability management tool built for DevOps and continuous security integration. - [Gauntlt](http://gauntlt.org/) - Pentest applications during routine continuous integration build pipelines. - [Git Secrets](https://github.com/awslabs/git-secrets) - Prevents you from committing passwords and other sensitive information to a git repository. -- [Vault](https://www.vaultproject.io/) - Tool for securely accessing secrets such as API keys, passwords, or certificates through a unified interface. -- [git-crypt](https://www.agwa.name/projects/git-crypt/) - Transparent file encryption in git; files which you choose to protect are encrypted when committed, and decrypted when checked out. +- [SOPS](https://github.com/mozilla/sops) - Editor of encrypted files that supports YAML, JSON, ENV, INI and binary formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault, and PGP. - [Snyk](https://snyk.io/) - Finds and fixes vulnerabilities and license violations in open source dependencies and container images. - [SonarQube](https://sonarqube.org) - Continuous inspection tool that provides detailed reports during automated testing and alerts on newly introduced security vulnerabilities. +- [Vault](https://www.vaultproject.io/) - Tool for securely accessing secrets such as API keys, passwords, or certificates through a unified interface. +- [git-crypt](https://www.agwa.name/projects/git-crypt/) - Transparent file encryption in git; files which you choose to protect are encrypted when committed, and decrypted when checked out. ### Application or Binary Hardening