Alternatives and similar repositories for policy-as-code

Users that are interested in policy-as-code are comparing it to the libraries listed below

• advanced-security / secret-scanning-custom-patterns
  Examples of Custom Secret Scanning Patterns
  ☆162Updated 4 months ago
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆133Updated 2 years ago
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆89Updated 2 weeks ago
• NickLiffen / ghas-enablement
  A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.
  ☆156Updated last year
• jhutchings1 / Create-ActionsPRs
  This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.
  ☆46Updated 2 years ago
• advanced-security / ghas-reviewer-app
  GitHub Advanced Security Pull Request Security Team required review GitHub App
  ☆36Updated last week
• advanced-security / GSSAR
  GitHub Secret Scanning Auto Remediator (GSSAR)
  ☆45Updated last month
• advanced-security / ghas-to-csv
  Play with GHAS API to provide posture data over time
  ☆38Updated 3 weeks ago
• advanced-security / codeql-extractor-iac
  CodeQL Extractor, Library, and Queries for Infrastructure as Code
  ☆50Updated 3 weeks ago
• peter-murray / github-security-report-action
  ☆80Updated last year
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆316Updated this week
• theztefan / ghas-metrics-report
  GitHub Action to generate GitHub Advanced Security (GHAS) metrics report
  ☆18Updated 5 months ago
• advanced-security / advanced-security-material
  ☆72Updated last month
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆189Updated last month
• advanced-security / probot-security-alerts
  Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts
  ☆23Updated 3 months ago
• advanced-security / ghas-license-utilization
  Optimize the utilization of GHAS licenses in an enterprise (or organization)
  ☆13Updated 3 months ago
• zkoppert / advanced-security-enforcer
  A GitHub action for organizations that enables advanced security code scanning on all new repos
  ☆40Updated 2 weeks ago
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆291Updated this week
• advanced-security / secret-scanning-review-action
  Action to detect if a secret is initially detected in a pull request
  ☆17Updated 3 weeks ago
• NickLiffen / CodeScanningToSlack
  A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.
  ☆18Updated last year
• advanced-security / gh-code-scanning
  A GitHub CLI extension for GitHub Code-Scanning!
  ☆25Updated 2 years ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆178Updated 3 months ago
• github / cleanowners
  A GitHub Action to suggest removal of non-organization members from CODEOWNERS files
  ☆134Updated this week
• advanced-security / generate-sbom-action
  An Action to wrap creating an SBOM via REST API
  ☆18Updated this week
• advanced-security / filter-sarif
  GitHub Action for filtering Code Scanning alerts by path and id
  ☆30Updated 8 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆230Updated 11 months ago
• advanced-security / sample-codeql-pipeline-config
  Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning
  ☆20Updated 2 months ago
• kllund / sample-pipeline-files
  This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…
  ☆28Updated 2 years ago
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆202Updated last week
• NickLiffen / GCSMTTR
  GitHub Code Scanning Mean Time to Remediate (GCSMTTR)
  ☆14Updated 2 years ago