logo
Home
Docs
Resources
Home Background ImageHome Foreground Image
logo

Cloud native application security and observability

What is OpenClarity?

OpenClarity is a suite of open source tools for cloud native security and observability—APIClarity, KubeClarity, and FunctionClarity.

Read more about each project below.

logosublogo

FunctionClarity provides a framework to sign and validate cloud function core artifacts (images or code) with various signing techniques including keyless (utilizing the cosign/sigstore project).

Learn more >
logosublogo

KubeClarity is a tool for detection and management of software bills of materials (SBOMs) and vulnerabilities in container images and filesystems. It scans both runtime Kubernetes clusters and CI/CD pipelines for enhanced software supply-chain security.

Learn more >
logosublogo

APIClarity, an open source cloud native visibility tool for APIs, utilizes a service-mesh framework to capture and analyze API traffic, and identify potential risks.

Learn more >

What is FunctionClarity?

FunctionClarity is an open source tool that provides a framework for signing and validating serverless cloud function artifacts (images or code) utilizing various signing techniques, including keyless.

diagram

Key Capabilities:

  • Combined from CLI for signing and serverless infrastructure for validation
  • Multi-cloud support (GCP, AWS, Azure)
  • Keyless and key-pair support
  • Multiple validation feedback support (detect, block, and notification)

Check out the code:

GitHubDocumentation

What is KubeClarity?

KubeClarity is a tool for detection and management of software bills of materials (SBOMs) and vulnerabilities in container images and filesystems. It scans both runtime Kubernetes clusters and CI/CD pipelines for enhanced software supply-chain security.

diagram

Key Capabilities:

  • SBOM and vulnerability detection
  • Comprehensive dashboard for SBOM analysis
  • Pluggable architecture

Check out the code:

GitHubDocumentation

What is APIClarity?

APIClarity is an open source tool for APIs that helps you visualize and identify potential risks around API usage in your cloud native environments. It helps build the OpenAPI specifications for all APIs in your environment, then helps track drift, shadow or zombie usage for those APIs. You can then use this information to build your application security posture.

diagram

Key Capabilities:

  • Quick and easy API visibility and analysis
  • Comprehensive dashboard to monitor APIs
  • Designed for developers, loved by security teams

Check out the code:

GitHubDocumentation

Adopted by

Panoptica Logo
Cisco.comAbout ET&IOur TeamCareers
ContactHelpTerms & ConditionsStatementCookiesTrademarks

© 2023 Cisco Systems, Inc.