advanced-security / policy-as-codeLinks
GitHub Advanced Security Policy as Code
☆82Updated last week
Alternatives and similar repositories for policy-as-code
Users that are interested in policy-as-code are comparing it to the libraries listed below
Sorting:
- GitHub Advance Security Compliance Action☆132Updated 2 years ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆49Updated last week
- Synchronize GitHub Code Scanning alerts to Jira issues☆87Updated 2 months ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated 2 weeks ago
- Examples of Custom Secret Scanning Patterns☆161Updated 3 months ago
- GitHub Secret Scanning Auto Remediator (GSSAR)☆44Updated this week
- ☆80Updated last year
- Play with GHAS API to provide posture data over time☆36Updated 4 months ago
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated 4 months ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆154Updated 11 months ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆46Updated 2 years ago
- ☆72Updated last week
- Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts☆23Updated 2 months ago
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆13Updated 2 months ago
- Generate SBOMs with gh CLI☆185Updated last month
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆39Updated last month
- A GitHub CLI extension for GitHub Code-Scanning!☆24Updated 2 years ago
- Action to detect if a secret is initially detected in a pull request☆17Updated 3 months ago
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆135Updated this week
- A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.☆18Updated 11 months ago
- Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning☆19Updated last month
- Enrich SBOMs with data from third party services☆173Updated 2 months ago
- This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…☆28Updated 2 years ago
- GitHub Code Scanning Mean Time to Remediate (GCSMTTR)☆14Updated last year
- Official GitHub Action for OpenSSF Scorecard.☆307Updated this week
- GitHub Action for creating software bill of materials using Syft.☆187Updated last week
- Generate a score for your sbom to understand if it will actually be useful.☆229Updated 9 months ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆42Updated last week
- A GitHub action to measure GitHub Actions workflow metrics. An enabler to put the concept discussed in the post to practice - https://www…☆23Updated last year
- Checkmarx CxFlow GitHub Action with SARIF output☆54Updated 3 weeks ago