advanced-security / gh-sbomLinks
Generate SBOMs with gh CLI
☆189Updated 2 months ago
Alternatives and similar repositories for gh-sbom
Users that are interested in gh-sbom are comparing it to the libraries listed below
Sorting:
- Enrich SBOMs with data from third party services☆181Updated last week
- Generate a score for your sbom to understand if it will actually be useful.☆230Updated 11 months ago
- GitHub Action for creating software bill of materials using Syft.☆195Updated last week
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆134Updated this week
- Official GitHub Action for OpenSSF Scorecard.☆322Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆96Updated last week
- Orchestrate GitHub Actions Security☆294Updated this week
- A tool to create, transform and attest VEX metadata☆148Updated 2 weeks ago
- Verify provenance from SLSA compliant builders☆274Updated this week
- Format agnostic SBOM tooling☆112Updated this week
- OpenVEX Specification☆155Updated last month
- SBOM Edit - Conditional edits and merging of SBOMs☆74Updated last week
- ☆43Updated 9 months ago
- GitHub Advanced Security Policy as Code☆86Updated last month
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- ☆62Updated last year
- Synchronize GitHub Code Scanning alerts to Jira issues☆89Updated last month
- SPDX Merge tool☆45Updated 3 months ago
- Machine-readable specification for the attestation of security-relevant data.☆60Updated 2 weeks ago
- SBOM Assess - Evaluate SBOM quality and compliance☆220Updated last week
- Throw a tag at it and it comes back with a checksum.☆141Updated this week
- in-toto Attestation Framework☆284Updated last month
- Language-agnostic SLSA provenance generation for Github Actions☆487Updated last month
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 2 months ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated 3 weeks ago
- A BOM repository server for distributing CycloneDX BOMs☆77Updated last month
- Check SPDX SBOM for NTIA minimum elements☆66Updated this week
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆210Updated last week
- Utility that provides an API platform for validating, querying and managing BOM data☆117Updated this week
- An Action to wrap creating an SBOM via REST API☆18Updated last week