advanced-security / policy-as-code
GitHub Advanced Security Policy as Code
☆77Updated 2 weeks ago
Alternatives and similar repositories for policy-as-code:
Users that are interested in policy-as-code are comparing it to the libraries listed below
- GitHub Advance Security Compliance Action☆132Updated 2 years ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆152Updated 7 months ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆34Updated 3 weeks ago
- Examples of Custom Secret Scanning Patterns☆153Updated 6 months ago
- Synchronize GitHub Code Scanning alerts to Jira issues☆81Updated 3 months ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆44Updated this week
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated last week
- ☆70Updated this week
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆45Updated last year
- ☆78Updated 9 months ago
- GitHub Secret Scanning Auto Remediator (GSSAR)☆44Updated last year
- Play with GHAS API to provide posture data over time☆34Updated 2 weeks ago
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆38Updated 11 months ago
- A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.☆18Updated 6 months ago
- This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…☆28Updated last year
- Action to detect if a secret is initially detected in a pull request☆13Updated 2 weeks ago
- A GitHub CLI extension for GitHub Code-Scanning!☆25Updated last year
- Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts☆22Updated 2 months ago
- GitHub Code Scanning Mean Time to Remediate (GCSMTTR)☆14Updated last year
- An Action to wrap creating an SBOM via REST API☆15Updated 4 months ago
- Official GitHub Action for OpenSSF Scorecard.☆276Updated this week
- Enrich SBOMs with data from third party services☆152Updated this week
- Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning☆19Updated 4 months ago
- Manage a uniform team of security managers for every organization in your enterprise☆17Updated 5 months ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆38Updated last month
- Generate SBOMs with gh CLI☆177Updated 4 months ago
- Action to detect if a secret is initially detected in a PR commit☆11Updated last year
- Automatically set the CodeQL matrix job using the languages in your repository.☆12Updated 3 months ago
- A tool to check the security settings of Github Organizations.☆70Updated last year
- Put the power of CodeQL in your pocket, take it with you to any CI 🚀☆11Updated last year