blackducksoftware / github-actionLinks
Synopsys Detect integration with Github Actions
☆17Updated 2 years ago
Alternatives and similar repositories for github-action
Users that are interested in github-action are comparing it to the libraries listed below
Sorting:
- Synchronize GitHub Code Scanning alerts to Jira issues☆92Updated 2 weeks ago
- Checkmarx CxFlow GitHub Action with SARIF output☆54Updated 4 months ago
- ☆81Updated last year
- GitHub Advance Security Compliance Action☆134Updated 2 years ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆38Updated 4 months ago
- Examples of SPDX files for software combinations☆136Updated 3 months ago
- Software Component Verification Standard (SCVS)☆150Updated 6 months ago
- Generate SBOMs with gh CLI☆193Updated 4 months ago
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Updated 2 months ago
- GitHub Advanced Security Policy as Code☆89Updated 3 weeks ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆47Updated 2 years ago
- Technical Advisory Council☆131Updated this week
- OpenSSF Governance and Legal Docs☆72Updated 3 weeks ago
- A broker system between a public service and a private service☆110Updated last week
- Official GitHub Action for OpenSSF Scorecard.☆337Updated this week
- SPDX Tools☆143Updated 2 years ago
- GitHub Action for creating software bill of materials using Syft.☆203Updated 2 weeks ago
- Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …☆189Updated last year
- Website and API for OpenSSF Scorecard☆25Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆233Updated last year
- Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis☆46Updated last year
- The FINOS InnerSource SIG is a community of people implementing, or interested in implementing, InnerSource within their financial servic…☆30Updated last year
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated 8 months ago
- OWASP Foundation Web Respository☆28Updated last year
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆215Updated 4 months ago
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated last year
- Documentation and guidance for handling outbound open source for organizations☆21Updated 2 years ago
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆57Updated last year
- This repository contains a sample script which can be used to enable security vulnerability alerts in all of the repositories in a given …☆80Updated last year
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆157Updated last year