https://github.com/developer-guy/rekor-falco
A Falco Plugin for Rekor Transparency Log Server
https://github.com/developer-guy/rekor-falco
falco falcoplugin falcoplugins rekor rekorserver transparencylog
Last synced: 5 months ago
JSON representation
A Falco Plugin for Rekor Transparency Log Server
- Host: GitHub
- URL: https://github.com/developer-guy/rekor-falco
- Owner: developer-guy
- Created: 2022-01-31T18:32:53.000Z (over 3 years ago)
- Default Branch: master
- Last Pushed: 2022-02-18T14:32:56.000Z (over 3 years ago)
- Last Synced: 2025-05-08T04:54:07.439Z (5 months ago)
- Topics: falco, falcoplugin, falcoplugins, rekor, rekorserver, transparencylog
- Language: Go
- Homepage:
- Size: 140 KB
- Stars: 7
- Watchers: 3
- Forks: 1
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# rekor-falco
A Falco Plugin for Rekor Transparency Log Server
## Usage
You need to install [Falco](https://falco.org/docs/getting-started/installation/#installing) on your environment.
```shell
$ make all
```
Next, you need to spin up your Falco instance with plugin enabled, to do that run the following command below:
```shell
$ falco -r example-rule.yaml -c falco.yaml
```
> Do not forget to replace the email adress within the example-rule.yaml to verify it is working.
> Also make sure to change the library path in the falco.yaml to the directory your falco-rekor plugin
Once Falco is up and running, you should sign something with cosign with experimental mode enabled:
```shell
$ COSIGN_EXPERIMENTAL=1 cosign sign devopps/alpine:3.15.0
```
Once the process finished, you should be able to see the alert triggerred by Falco.
> If you are running OSX environment you can use lima to use this plugin. Lima allows us to create linux environment on OSX. See [osx.md](docs/osx.md)