Alternatives and similar repositories for chainalert-github-action

Users that are interested in chainalert-github-action are comparing it to the libraries listed below

• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆133Updated 2 weeks ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆72Updated 2 years ago
• snyk-labs / snync
  Mitigate security concerns of Dependency Confusion supply chain security risks
  ☆49Updated 2 months ago
• snyk / snyk-to-html
  Tool to export test reports from the Snyk CLI to HTML.
  ☆101Updated last week
• Checkmarx / 2ms
  Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
  ☆118Updated this week
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆108Updated 2 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆232Updated last year
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆313Updated this week
• CycloneDX / gh-node-module-generatebom
  GitHub action to generate a CycloneDX SBOM for Node.js
  ☆22Updated last month
• snyk-labs / github-actions-scanner
  Scans your Github Actions for security issues
  ☆83Updated last week
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆73Updated last year
• snyk-labs / pysnyk
  A Python client for the Snyk API.
  ☆100Updated last year
• GitGuardian / ggcanary
  GitGuardian Canary Tokens
  ☆137Updated 2 months ago
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆78Updated 8 months ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆39Updated 3 years ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆40Updated 8 months ago
• TinderSec / gh-workflow-auditor
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆156Updated last year
• SecureStackCo / actions-sbom
  A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, sta…
  ☆25Updated 2 years ago
• snyk / broker
  A broker system between a public service and a private service
  ☆111Updated last week
• aquasecurity / cfsec
  Static analysis for CloudFormation templates to identify common misconfiguration
  ☆57Updated 3 years ago
• snyk / vulncost
  Find security vulnerabilities in open source npm packages while you code
  ☆209Updated 3 years ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious npm and PyPI packages
  ☆158Updated this week
• security-alert / security-alert
  [GitHub] A Command Line ToolKit for GitHub Security Alert.
  ☆27Updated last month
• ossf / wg-security-tooling
  OpenSSF Security Tooling Working Group
  ☆313Updated last month
• ossf / malicious-packages
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆329Updated this week
• fraim-dev / fraim
  A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.
  ☆111Updated this week
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆41Updated 4 years ago
• nice-registry / all-the-package-repos
  🌍 Normalized repository URLs for every package in the npm registry. Updated daily.
  ☆89Updated this week
• opengrep / opengrep-rules
  ☆83Updated 7 months ago
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆95Updated 6 months ago