blackducksoftware / github-action
Synopsys Detect integration with Github Actions
☆17Updated last year
Related projects: ⓘ
- GitHub Secret Scanning Auto Remediator (GSSAR)☆39Updated last year
- Website and API for OpenSSF Scorecard☆22Updated this week
- Checkmarx CxFlow GitHub Action with SARIF output☆52Updated 2 weeks ago
- Checkmarx Scan Github Action☆27Updated 2 months ago
- OWASP Foundation Web Respository☆26Updated 3 weeks ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆43Updated last year
- SIG Security - Software Bill of Materials☆18Updated 2 years ago
- Synchronize GitHub Code Scanning alerts to Jira issues☆81Updated last month
- OWASP Foundation Web Respository☆10Updated last year
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆16Updated 3 months ago
- Technical Advisory Council☆107Updated last week
- OpenSSF Endusers Working Group☆28Updated 5 months ago
- A community collection of security reviews of open source software components.☆92Updated 6 months ago
- Report missing advisories and corrections on OSS Index☆17Updated last year
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆31Updated 2 months ago
- ☆32Updated 3 weeks ago
- GitHub Action for adding contextual training material to SARIF files☆21Updated last week
- GitHub Action that provides an Organization Membership Audit☆42Updated last year
- GitHub Advanced Security Policy as Code☆67Updated last week
- Guideline of best practices to follow to configure Github Enterprise Cloud in a secure way.☆37Updated 3 years ago
- Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis☆34Updated this week
- GitHub Advance Security Compliance Action☆131Updated last year
- ☆78Updated 4 months ago
- Examples of SPDX files for software combinations☆119Updated last week
- This repository contains a sample script which can be used to enable security vulnerability alerts in all of the repositories in a given …☆79Updated last year
- Awesome Snyk community contributions, champions, integrations, blogs, tools and more 💜☆42Updated 2 years ago
- The FINOS InnerSource SIG is a community of people implementing, or interested in implementing, InnerSource within their financial servic…☆27Updated 5 months ago
- Test and monitor your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Snyk.☆59Updated 3 weeks ago
- SLSA Azure DevOps Pipelines Extension☆23Updated last month
- ☆65Updated 3 weeks ago