advanced-security / policy-as-codeLinks
GitHub Advanced Security Policy as Code
☆87Updated this week
Alternatives and similar repositories for policy-as-code
Users that are interested in policy-as-code are comparing it to the libraries listed below
Sorting:
- GitHub Advance Security Compliance Action☆134Updated 2 years ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆35Updated last week
- Examples of Custom Secret Scanning Patterns☆164Updated last week
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆156Updated last year
- ☆73Updated last week
- Synchronize GitHub Code Scanning alerts to Jira issues☆91Updated last week
- ☆81Updated last year
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆47Updated 2 years ago
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated 7 months ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆51Updated this week
- Play with GHAS API to provide posture data over time☆39Updated last week
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Updated last month
- Official GitHub Action for OpenSSF Scorecard.☆330Updated this week
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆15Updated 5 months ago
- Generate SBOMs with gh CLI☆192Updated 3 months ago
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆41Updated this week
- Action to detect if a secret is initially detected in a pull request☆17Updated last week
- A GitHub CLI extension for GitHub Code-Scanning!☆25Updated 2 years ago
- Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts☆23Updated 5 months ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆42Updated 2 weeks ago
- A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.☆18Updated last year
- Checkmarx CxFlow GitHub Action with SARIF output☆54Updated 4 months ago
- This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…☆27Updated 2 years ago
- Orchestrate GitHub Actions Security☆295Updated last month
- Present ZAProxy results in GitHub Advanced Security☆18Updated last year
- Enrich SBOMs with data from third party services☆190Updated 2 weeks ago
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆212Updated 3 months ago
- GitHub Action for creating software bill of materials using Syft.☆200Updated this week
- Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning☆23Updated last month
- Action to detect if a secret is initially detected in a PR commit☆11Updated 2 years ago