SpectralOps / spectral-github-actionLinks
Spectral Security Integration into your Github Actions pipeline
☆14Updated last year
Alternatives and similar repositories for spectral-github-action
Users that are interested in spectral-github-action are comparing it to the libraries listed below
Sorting:
- Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations☆19Updated 2 years ago
- preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.☆156Updated 3 years ago
- GitHub Advanced Security Policy as Code☆91Updated 3 weeks ago
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆129Updated 4 years ago
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆42Updated 3 weeks ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated 3 weeks ago
- ☆83Updated last year
- Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.☆135Updated last year
- GitHub Advance Security Compliance Action☆134Updated 3 years ago
- Generate SBOMs with gh CLI☆197Updated 7 months ago
- Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts☆23Updated 9 months ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆158Updated last year
- GitHub Action for creating software bill of materials using Syft.☆216Updated this week
- ValidIaC combines the best open-source tools to help ensure Infrastructure-as-Code best practices, hygiene & security.☆234Updated 8 months ago
- Orchestrate GitHub Actions Security☆303Updated last week
- Official GitHub Action for OpenSSF Scorecard.☆348Updated 2 weeks ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆47Updated 2 years ago
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆136Updated last week
- Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis☆50Updated 2 months ago
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practice…☆65Updated last year
- A set of GitHub actions for checking your projects for vulnerabilities.☆608Updated 2 months ago
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆940Updated 3 weeks ago
- Present ZAProxy results in GitHub Advanced Security☆18Updated last year
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆171Updated 11 months ago
- Synchronize GitHub Code Scanning alerts to Jira issues☆96Updated last month
- Example of using Actions OIDC token to proxy into a private network☆105Updated 9 months ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with ��…☆42Updated last week
- By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps…☆205Updated 2 years ago
- ☆285Updated 3 years ago
- Anchore container analysis and scan provided as a GitHub Action☆264Updated this week