Azure / container-scanLinks
A GitHub action to help you scan your docker image for vulnerabilities
☆221Updated 2 years ago
Alternatives and similar repositories for container-scan
Users that are interested in container-scan are comparing it to the libraries listed below
Sorting:
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- Anchore container analysis and scan provided as a GitHub Action☆246Updated this week
- Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec☆113Updated 8 months ago
- Add comments to pull requests where tfsec checks have failed☆169Updated last year
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆155Updated last year
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- Plugin for Docker CLI to support SBOM creation using Syft☆156Updated 2 months ago
- GitHub Action for creating software bill of materials using Syft.☆189Updated last week
- Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark☆217Updated 4 months ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆50Updated this week
- The AKS Checklist☆154Updated last month
- GitHub Issue + Trivy Action☆55Updated 2 years ago
- Evaluate source control (GitHub) security posture☆250Updated 2 years ago
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practice…☆59Updated 6 months ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- A VS Code Extension for Trivy☆142Updated this week
- Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.☆133Updated last year
- Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities☆984Updated 3 weeks ago
- Github action to benchmark dockerfiles in github repository.☆12Updated 2 years ago
- GitHub Advanced Security Policy as Code☆83Updated 2 weeks ago
- A GitHub Action for running the ZAP Baseline scan☆329Updated this week
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆97Updated last year
- Notice: Postee is no longer under active development or maintenance.☆211Updated 3 weeks ago
- Cross tooling and interoperability specifications☆170Updated last month
- ☆72Updated 2 weeks ago
- Synchronize GitHub Code Scanning alerts to Jira issues☆88Updated 2 weeks ago
- ☆56Updated last year
- Open source compliance tool for development platforms.☆286Updated last year
- Run tfsec with reviewdog on pull requests to enforce security best practices☆76Updated this week
- Examples of Custom Secret Scanning Patterns☆162Updated 4 months ago