advanced-security / policy-as-codeLinks
GitHub Advanced Security Policy as Code
☆90Updated last month
Alternatives and similar repositories for policy-as-code
Users that are interested in policy-as-code are comparing it to the libraries listed below
Sorting:
- GitHub Advance Security Compliance Action☆134Updated 2 years ago
- Examples of Custom Secret Scanning Patterns☆168Updated last month
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated 2 weeks ago
- ☆75Updated 2 weeks ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆158Updated last year
- Synchronize GitHub Code Scanning alerts to Jira issues☆94Updated last month
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated 9 months ago
- ☆81Updated last year
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆47Updated 2 years ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆56Updated last week
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Updated 3 months ago
- Play with GHAS API to provide posture data over time☆40Updated 2 weeks ago
- Generate SBOMs with gh CLI☆195Updated 5 months ago
- Official GitHub Action for OpenSSF Scorecard.☆339Updated last week
- Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts☆23Updated 7 months ago
- Action to detect if a secret is initially detected in a pull request☆17Updated last week
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆41Updated 2 weeks ago
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆15Updated last month
- A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.☆18Updated last year
- Action to detect if a secret is initially detected in a PR commit☆11Updated 2 years ago
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆215Updated 5 months ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆43Updated this week
- Present ZAProxy results in GitHub Advanced Security☆18Updated last year
- Manage a uniform team of security managers for every organization in your enterprise☆25Updated 3 weeks ago
- GitHub Action solution for creating repository through GitHub issue workflows.☆22Updated 2 years ago
- Language-agnostic SLSA provenance generation for Github Actions☆517Updated 3 weeks ago
- Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning☆23Updated 3 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆234Updated last year
- Checkmarx CxFlow GitHub Action with SARIF output☆54Updated 6 months ago
- This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…☆27Updated 2 years ago