Alternatives and similar repositories for trivy-action

Users that are interested in trivy-action are comparing it to the libraries listed below

• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆252Updated last week
• snyk / actions
  A set of GitHub actions for checking your projects for vulnerabilities
  ☆579Updated this week
• step-security / harden-runner
  Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…
  ☆864Updated this week
• Checkmarx / kics
  Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…
  ☆2,442Updated this week
• integrations / terraform-provider-github
  Terraform GitHub provider
  ☆1,021Updated 2 months ago
• chainguard-images / images
  Public Chainguard Images
  ☆615Updated last week
• trstringer / manual-approval
  Pause your GitHub Actions workflow and request manual approval from set approvers before continuing
  ☆556Updated 3 weeks ago
• hashicorp / setup-terraform
  Sets up Terraform CLI in your GitHub Actions workflow.
  ☆1,493Updated last week
• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆328Updated 2 months ago
• JamesWoolfenden / pike
  Pike is a tool for determining the permissions or policy required for IAC code
  ☆742Updated this week
• aquasecurity / trivy-operator
  Kubernetes-native security toolkit
  ☆1,582Updated this week
• infracost / actions
  GitHub Action for Infracost. See cloud cost estimates for Terraform in pull requests. 💰📉 Love your cloud bill!
  ☆256Updated 6 months ago
• hashicorp / vault-action
  A GitHub Action that simplifies using HashiCorp Vault™ secrets as build variables.
  ☆479Updated 3 weeks ago
• hadolint / hadolint-action
  GitHub action for Hadolint, A Dockerfile linting tool
  ☆230Updated last year
• project-copacetic / copacetic
  🧵 CLI tool for directly patching container images!
  ☆1,403Updated this week
• slsa-framework / slsa-github-generator
  Language-agnostic SLSA provenance generation for Github Actions
  ☆493Updated last month
• docker / metadata-action
  GitHub Action to extract metadata (tags, labels) from Git reference and GitHub events for Docker
  ☆1,030Updated this week
• zaproxy / action-baseline
  A GitHub Action for running the ZAP Baseline scan
  ☆334Updated 2 months ago
• terraform-linters / setup-tflint
  A GitHub action that installs Terraform linter TFLint
  ☆173Updated last week
• fugue / regula
  Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…
  ☆963Updated 11 months ago
• tofuutils / tenv
  OpenTofu / Terraform / Terragrunt and Atmos version manager
  ☆1,152Updated this week
• Azure / container-scan
  A GitHub action to help you scan your docker image for vulnerabilities
  ☆221Updated 2 years ago
• jonico / awesome-runners
  A curated list of awesome self-hosted GitHub Action runners in a large comparison matrix
  ☆815Updated 6 months ago
• yannh / kubeconform
  A FAST Kubernetes manifests validator, with support for Custom Resources!
  ☆2,734Updated 3 months ago
• cloudflare / cf-terraforming
  A command line utility to facilitate terraforming your existing Cloudflare resources.
  ☆1,198Updated this week
• snyk / driftctl
  Detect, track and alert on infrastructure drift
  ☆2,565Updated 3 weeks ago
• gruntwork-io / terragrunt-action
  A GitHub Action for installing and running Terragrunt
  ☆140Updated 3 weeks ago
• gitleaks / gitleaks-action
  Protect your secrets using Gitleaks-Action
  ☆433Updated last month
• cycloidio / inframap
  Read your tfstate or HCL to generate a graph specific for each provider, showing only the resources that are most important/relevant.
  ☆1,907Updated last week
• open-policy-agent / conftest
  Write tests against structured configuration data using the Open Policy Agent Rego query language
  ☆3,028Updated this week