SpectralOps / spectral-github-action
Spectral Security Integration into your Github Actions pipeline
☆14Updated 11 months ago
Alternatives and similar repositories for spectral-github-action:
Users that are interested in spectral-github-action are comparing it to the libraries listed below
- Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations☆18Updated last year
- preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.☆153Updated 2 years ago
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆127Updated 3 years ago
- Friends don't let friends leak secrets on their terminal window☆104Updated 3 years ago
- Allows you to manage configuration and secrets from multiple provider while masking the secrets at the deployment☆72Updated 2 years ago
- ☆19Updated 2 years ago
- By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps…☆205Updated last year
- Evaluate source control (GitHub) security posture☆249Updated 2 years ago
- zanadir is an open-source CLI tool that analyzes GitHub repositories and suggests open-source tools to enhance CI/CD best practices.☆133Updated this week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆796Updated last week
- ValidIaC combines the best open-source tools to help ensure Infrastructure-as-Code best practices, hygiene & security.☆228Updated 3 weeks ago
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆169Updated 2 months ago
- The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.☆889Updated last year
- boostsecurityio/poutine☆259Updated 3 weeks ago
- Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git☆89Updated last week
- Chalk allows you to follow code from development, through builds and into production.☆367Updated last week
- A tool to check the security settings of Github Organizations.☆71Updated last year
- ☆14Updated 8 months ago
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆179Updated this week
- Discover sensitive/confidential information stored in a vector database☆57Updated last year
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆741Updated 3 months ago
- BadRobot - Operator Security Audit Tool☆218Updated this week
- OWASP Foundation Web Respository☆18Updated 2 weeks ago
- Open source compliance tool for development platforms.☆286Updated last year
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Vulnerability scanning just got lazier☆286Updated 2 weeks ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆555Updated last week
- Datree offers cluster integration that allows you to validate your resources against your configured policy upon pushing them into a clus…☆24Updated last year
- GitHub Advanced Security Policy as Code☆81Updated this week
- Identity & Access Management simplified and secure.☆254Updated 2 years ago