{"id":26127451,"url":"https://github.com/banzaicloud/chartsec","last_synced_at":"2026-02-25T09:40:09.194Z","repository":{"id":49718441,"uuid":"182104566","full_name":"banzaicloud/chartsec","owner":"banzaicloud","description":"Helm Chart security scanner","archived":false,"fork":false,"pushed_at":"2019-08-30T08:45:29.000Z","size":57,"stargazers_count":48,"open_issues_count":2,"forks_count":4,"subscribers_count":4,"default_branch":"master","last_synced_at":"2025-04-11T03:40:30.087Z","etag":null,"topics":["helm","helm-chart","security","security-scanner"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/banzaicloud.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-04-18T14:38:35.000Z","updated_at":"2025-03-28T06:46:34.000Z","dependencies_parsed_at":"2022-07-26T18:02:05.035Z","dependency_job_id":null,"html_url":"https://github.com/banzaicloud/chartsec","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/banzaicloud%2Fchartsec","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/banzaicloud%2Fchartsec/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/banzaicloud%2Fchartsec/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/banzaicloud%2Fchartsec/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/banzaicloud","download_url":"https://codeload.github.com/banzaicloud/chartsec/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248750010,"owners_count":21155682,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["helm","helm-chart","security","security-scanner"],"created_at":"2025-03-10T18:08:21.065Z","updated_at":"2026-02-25T09:40:09.140Z","avatar_url":"https://github.com/banzaicloud.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Chartsec: Helm Chart security checker\n\n[![CircleCI](https://circleci.com/gh/banzaicloud/chartsec.svg?style=svg)](https://circleci.com/gh/banzaicloud/chartsec)\n[![Go Report Card](https://goreportcard.com/badge/github.com/banzaicloud/chartsec?style=flat-square)](https://goreportcard.com/report/github.com/banzaicloud/chartsec)\n[![GoDoc](http://img.shields.io/badge/godoc-reference-5272B4.svg?style=flat-square)](https://godoc.org/github.com/banzaicloud/chartsec)\n\nChartsec scans a Helm chart for potential security vulnerabilities for it's user.\nIt's especially useful to check third-party charts before even decompressing them.\n\n\n## Usage\n\nChartsec can be used both as a library and an executable.\n\nBuild the binary executable with the following command:\n\n```bash\ngo get github.com/banzaicloud/chartsec/cmd/chartsec\n```\n\nUse it to check a chart package:\n\n```bash\nchartsec path/to/package.tgz\n```\n\nOr use it as a library in your project:\n\n```go\npackage main\n\nimport (\n\t\"os\"\n\t\n\t\"github.com/banzaicloud/chartsec\"\n)\n\nfunc main() {\n    file, err := os.Open(\"path/to/package.tgz\")\n    if err != nil {\n        panic(err)\n    }\n\n    scanner := chartsec.NewDefaultChartScanner()\n\n    err = scanner.Scan(file)\n    if err != nil {\n    \tpanic(err)\n    }\n}\n```\n\n\n## Security checks\n\n- Compressed archive does not exceed 10MB\n- Decompressed archive does not exceed 10MB\n- Markdown files do not contain malicious content (html script, etc)\n\n\n## Why is everything in package `internal`?\n\nWhile we believe this package is ultimately useful for anyone who work with third-party charts,\nthe API is not quite stable yet, the implementation might change,\nso we decided to expose only what's necessary to use the core functionality to prevent ossification.\n\n\n## License\n\nApache 2.0 License. Please see [License File](LICENSE) for more information.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbanzaicloud%2Fchartsec","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbanzaicloud%2Fchartsec","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbanzaicloud%2Fchartsec/lists"}