SpectralOps / spectral-github-actionLinks
Spectral Security Integration into your Github Actions pipeline
☆15Updated last year
Alternatives and similar repositories for spectral-github-action
Users that are interested in spectral-github-action are comparing it to the libraries listed below
Sorting:
- preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.��☆155Updated 2 years ago
- Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations☆19Updated last year
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆127Updated 4 years ago
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆170Updated 7 months ago
- Evaluate source control (GitHub) security posture☆252Updated 2 years ago
- Open source compliance tool for development platforms.☆288Updated last year
- By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps…☆205Updated 2 years ago
- Identity & Access Management simplified and secure.☆259Updated 2 years ago
- SCP management tool☆133Updated last year
- A VS Code Extension for Trivy☆146Updated last week
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆538Updated 3 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆233Updated last year
- ☆13Updated last year
- Open Source Software Secure Supply Chain Framework☆236Updated 2 years ago
- ☆56Updated 2 years ago
- Useful scripts, Docker images, docker-compose apps, and Terraform modules.☆150Updated last week
- Terraform module for serverless certificate authority on AWS☆149Updated last week
- ☆286Updated 2 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Enhance the security of your web applications effortlessly with AWS Firewall Factory. Safeguard your valuable assets through seamless WAF…☆257Updated 2 weeks ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- GitHub Action for creating software bill of materials using Syft.☆200Updated last week
- The official CloudGraph AWS provider☆30Updated last year
- AWS SSO Reporter☆54Updated 4 months ago
- ValidIaC combines the best open-source tools to help ensure Infrastructure-as-Code best practices, hygiene & security.☆234Updated 4 months ago
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…☆264Updated 2 years ago
- A reading list for software supply-chain security.☆364Updated 2 years ago
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆197Updated last year
- IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, hum…☆294Updated 9 months ago
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆40Updated last year