Cloud native application security and observability
What is OpenClarity?
OpenClarity is a suite of open source tools for cloud native security and observability—APIClarity, KubeClarity, and FunctionClarity.
Read more about each project below.
FunctionClarity provides a framework to sign and validate cloud function core artifacts (images or code) with various signing techniques including keyless (utilizing the cosign/sigstore project).Learn more >
KubeClarity is a tool for detection and management of software bills of materials (SBOMs) and vulnerabilities in container images and filesystems. It scans both runtime Kubernetes clusters and CI/CD pipelines for enhanced software supply-chain security.Learn more >
APIClarity, an open source cloud native visibility tool for APIs, utilizes a service-mesh framework to capture and analyze API traffic, and identify potential risks.Learn more >
What is FunctionClarity?
FunctionClarity is an open source tool that provides a framework for signing and validating serverless cloud function artifacts (images or code) utilizing various signing techniques, including keyless.
- Combined from CLI for signing and serverless infrastructure for validation
- Multi-cloud support (GCP, AWS, Azure)
- Keyless and key-pair support
- Multiple validation feedback support (detect, block, and notification)
Check out the code:
What is KubeClarity?
KubeClarity is a tool for detection and management of software bills of materials (SBOMs) and vulnerabilities in container images and filesystems. It scans both runtime Kubernetes clusters and CI/CD pipelines for enhanced software supply-chain security.
- SBOM and vulnerability detection
- Comprehensive dashboard for SBOM analysis
- Pluggable architecture
Check out the code:
What is APIClarity?
APIClarity is an open source tool for APIs that helps you visualize and identify potential risks around API usage in your cloud native environments. It helps build the OpenAPI specifications for all APIs in your environment, then helps track drift, shadow or zombie usage for those APIs. You can then use this information to build your application security posture.
- Quick and easy API visibility and analysis
- Comprehensive dashboard to monitor APIs
- Designed for developers, loved by security teams