SpectralOps / spectral-github-action
Spectral Security Integration into your Github Actions pipeline
☆14Updated last year
Alternatives and similar repositories for spectral-github-action:
Users that are interested in spectral-github-action are comparing it to the libraries listed below
- Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations☆18Updated last year
- preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.☆153Updated 2 years ago
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆128Updated 3 years ago
- Friends don't let friends leak secrets on their terminal window☆104Updated 3 years ago
- Allows you to manage configuration and secrets from multiple provider while masking the secrets at the deployment☆72Updated 2 years ago
- By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps…☆205Updated last year
- Evaluate source control (GitHub) security posture☆249Updated 2 years ago
- ☆19Updated 2 years ago
- Open source compliance tool for development platforms.☆286Updated last year
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆170Updated 3 months ago
- GitHub Advanced Security Policy as Code☆82Updated last week
- ☆283Updated 2 years ago
- Check Point shiftleft documentation and examples☆14Updated 4 years ago
- zanadir is an open-source CLI tool that analyzes GitHub repositories and suggests open-source tools to enhance CI/CD best practices.☆139Updated this week
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆39Updated 3 weeks ago
- ValidIaC combines the best open-source tools to help ensure Infrastructure-as-Code best practices, hygiene & security.☆229Updated last month
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆187Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆229Updated 8 months ago
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practice…☆56Updated 4 months ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- A docker container to simplify and secure the use of Infrastructure as Code (IaC)☆72Updated this week
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆48Updated last month
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- Official GitHub Action for OpenSSF Scorecard.☆293Updated this week
- Anchore container analysis and scan provided as a GitHub Action☆237Updated this week
- An open source, cloud-native security to protect everything from build to runtime☆299Updated last week
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆40Updated 3 weeks ago
- 🦅 Run a StackHawk scan in GitHub Actions☆25Updated 2 weeks ago
- Datree offers cluster integration that allows you to validate your resources against your configured policy upon pushing them into a clus…☆24Updated last year
- The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.☆890Updated last year