ShiftLeftSecurity / scan-action
☆52Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for scan-action
- Github Action implementation of SLSA Provenance Generation☆47Updated this week
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Updated 2 years ago
- Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec☆112Updated last month
- Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.☆49Updated this week
- A tool to check the security settings of Github Organizations.☆69Updated last year
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆73Updated 7 months ago
- Enrich SBOMs with data from third party services☆120Updated this week
- GitHub Secret Scanning Auto Remediator (GSSAR)☆44Updated last year
- Security scanning & static analysis tool☆93Updated last month
- vscode extension for tfsec☆30Updated last year
- Generate a score for your sbom to understand if it will actually be useful.☆221Updated 3 months ago
- GitHub Advance Security Compliance Action☆132Updated last year
- A broker system between a public service and a private service☆100Updated this week
- ☆40Updated this week
- A Golang program to rotate AWS & GCP account keys☆65Updated 2 months ago
- Public tables and other research that can accept PRs. Please visit the web link.☆44Updated 5 years ago
- Github action for linting AWS IAM policy documents☆36Updated last year
- Scan repository for secrets with basic defaults in place for easy setup.☆22Updated 2 weeks ago
- Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …☆41Updated 4 years ago
- A tool to create, transform and attest VEX metadata☆119Updated this week
- Static analysis for CloudFormation templates to identify common misconfiguration☆58Updated 2 years ago
- Github Action for integrating Security Alerts with JIRA☆53Updated this week
- ☆16Updated 6 months ago
- An Action to wrap creating an SBOM via REST API☆15Updated 2 months ago
- Github action to run dependency check☆71Updated 3 months ago
- A Terraform Provider for Creating Data Flow Diagrams☆12Updated 5 years ago
- Automate vulnerability triage which prioritizes remediation over discovery☆14Updated this week
- This plugin provides dependency metadata for Docker images☆32Updated this week