Open Source Software Library

Maple Linux is a Canadian maintained, Debian based distro. It ships with Cinnamon DE for an easy transition for Windows users, and includes additional security and privacy enhancements out of box. Learn more at maplelinux.ca

CANARIE manages the Canadian Access Federation (CAF), which provides open-source Shibboleth identity federation infrastructure enabling single sign-on for over 300 Canadian universities, colleges, and research institutions. Their open tools and configuration guides are publicly available.

Small service for securely sharing secrets.

Security Notes is an open-source project or repository maintained by Canadian Digital Service in Canada.

Lambda Edge Security Headers is an open-source project or repository maintained by Canadian Digital Service in Canada.

Tools and policy checks that help Government of Canada teams evaluate IBM Cloud deployments against common cloud guardrails. It is useful for repeatable compliance reviews, documentation of security expectations, and sharing implementation patterns across departments.

Open Policy Agent guidance and configuration examples for checking Google Cloud Platform services against Government of Canada cloud guardrails. The repository documents recommended settings and gives teams a reusable starting point for compliant GCP deployments.

PowerShell-based tooling for assessing Microsoft Azure environments against Government of Canada cloud guardrail requirements. Although archived, it remains a useful reference for Azure compliance automation and policy-as-code patterns.

Terraform and infrastructure templates for accelerating Government of Canada service delivery on Google Cloud Platform. The project packages reusable baseline patterns so teams can start cloud projects with consistent security and operational defaults.

Infrastructure and policy examples for checking Oracle Cloud deployments against Government of Canada guardrails. It provides reusable guidance for teams that need to document cloud compliance controls in Oracle environments.

Minimum guardrails and practical guidance for preventing ransomware in Government of Canada environments. The project is useful as a policy and control reference for security teams reviewing digital services.

Prototype JavaScript service for processing DMARC report data in a Government of Canada context. It can serve as a reference for email-domain security monitoring and report automation.

Kubernetes admission tooling that injects Kerberos sidecars into workloads that need secure authentication. It supports enterprise data-science and analytics platforms where legacy identity systems must integrate with containers.

Collection of tools used by the Canadian Digital Service to support confidentiality, integrity and availability of applications. It includes shared security automation and reference material for operational teams.

GitHub Action that forwards data from a previous CI step into Microsoft Sentinel. It supports security-monitoring workflows by connecting repository automation with cloud security tooling.

Keycloak-based single sign-on assets used by B.C. Government platform services. The repository supports authentication configuration, integration examples and identity-management operations.