aquasecurity / trivy-actionLinks
Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
☆1,073Updated last month
Alternatives and similar repositories for trivy-action
Users that are interested in trivy-action are comparing it to the libraries listed below
Sorting:
- Anchore container analysis and scan provided as a GitHub Action☆256Updated last week
- A set of GitHub actions for checking your projects for vulnerabilities.☆594Updated this week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆890Updated this week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,487Updated this week
- Terraform GitHub provider☆1,033Updated 3 months ago
- Sets up Terraform CLI in your GitHub Actions workflow.☆1,502Updated last week
- A GitHub Action for running the ZAP Full scan☆331Updated 3 months ago
- A GitHub Action that simplifies using HashiCorp Vault™ secrets as build variables.☆484Updated 2 months ago
- GitHub Action for Infracost. See cloud cost estimates for Terraform in pull requests. 💰📉 Love your cloud bill!☆259Updated 7 months ago
- Pike is a tool for determining the permissions or policy required for IAC code☆761Updated this week
- A curated list of awesome self-hosted GitHub Action runners in a large comparison matrix☆826Updated 8 months ago
- Protect your secrets using Gitleaks-Action☆451Updated 2 months ago
- 🧵 CLI tool for directly patching container images!☆1,446Updated this week
- Kubernetes-native security toolkit☆1,642Updated this week
- Pause your GitHub Actions workflow and request manual approval from set approvers before continuing☆579Updated 3 weeks ago
- GitHub Action to extract metadata (tags, labels) from Git reference and GitHub events for Docker☆1,041Updated last month
- A GitHub Action for running the ZAP Baseline scan☆337Updated 3 months ago
- GitHub action for Hadolint, A Dockerfile linting tool☆235Updated 2 weeks ago
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…☆960Updated last year
- Language-agnostic SLSA provenance generation for Github Actions☆501Updated 3 months ago
- Detect, track and alert on infrastructure drift☆2,576Updated 3 weeks ago
- 👽 Terraform Orchestration Tool for DevOps. Keep environment configuration DRY with hierarchical imports of configurations, inheritance, …☆1,161Updated this week
- Terratag is a CLI tool that enables users of Terraform to automatically create and maintain tags across their entire set of AWS, Azure, a…☆1,014Updated 2 months ago
- ☆784Updated this week
- Read your tfstate or HCL to generate a graph specific for each provider, showing only the resources that are most important/relevant.☆1,928Updated last month
- A GitHub action that installs Terraform linter TFLint☆177Updated this week
- Public Chainguard Images☆630Updated last week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆814Updated 6 months ago
- TFLint ruleset for terraform-provider-aws☆392Updated last week
- GitHub App to set and enforce security policies☆1,359Updated last week