advanced-security / policy-as-codeLinks
GitHub Advanced Security Policy as Code
☆90Updated last week
Alternatives and similar repositories for policy-as-code
Users that are interested in policy-as-code are comparing it to the libraries listed below
Sorting:
- GitHub Advance Security Compliance Action☆134Updated 2 years ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated last week
- Examples of Custom Secret Scanning Patterns☆165Updated 2 weeks ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆157Updated last year
- ☆74Updated this week
- ☆81Updated last year
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated 8 months ago
- Synchronize GitHub Code Scanning alerts to Jira issues☆93Updated 2 weeks ago
- Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts☆23Updated 6 months ago
- Play with GHAS API to provide posture data over time☆39Updated this week
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆54Updated 2 weeks ago
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Updated 3 months ago
- Official GitHub Action for OpenSSF Scorecard.☆338Updated last week
- Generate SBOMs with gh CLI☆193Updated 4 months ago
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆41Updated 2 weeks ago
- Action to detect if a secret is initially detected in a pull request☆17Updated last month
- A GitHub CLI extension for GitHub Code-Scanning!☆25Updated 2 years ago
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆15Updated 2 weeks ago
- A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.☆18Updated last year
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆216Updated 4 months ago
- Checkmarx CxFlow GitHub Action with SARIF output☆54Updated 5 months ago
- Language-agnostic SLSA provenance generation for Github Actions☆511Updated 3 months ago
- Manage a uniform team of security managers for every organization in your enterprise☆25Updated last week
- Present ZAProxy results in GitHub Advanced Security☆18Updated last year
- Enrich SBOMs with data from third party services☆196Updated last month
- A GitHub Action for running the ZAP API scan☆65Updated 4 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆234Updated last year
- Action to detect if a secret is initially detected in a PR commit☆11Updated 2 years ago
- GitHub Action for creating software bill of materials using Syft.☆204Updated last week
- An Action to wrap creating an SBOM via REST API☆20Updated this week