blackducksoftware / github-actionLinks
Synopsys Detect integration with Github Actions
☆17Updated 2 years ago
Alternatives and similar repositories for github-action
Users that are interested in github-action are comparing it to the libraries listed below
Sorting:
- Synchronize GitHub Code Scanning alerts to Jira issues☆90Updated 2 weeks ago
- ☆34Updated last month
- SPDX Tools☆139Updated 2 years ago
- Examples of SPDX files for software combinations☆133Updated last month
- CVE Automation Working Group☆172Updated this week
- Check SPDX SBOM for NTIA minimum elements☆66Updated 2 weeks ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 2 months ago
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- Software Component Verification Standard (SCVS)☆149Updated 4 months ago
- SLSA Azure DevOps Pipelines Extension☆30Updated 11 months ago
- Generate SBOMs with gh CLI☆189Updated 2 months ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆47Updated 2 years ago
- Scanning and analysis for Black Duck SCA products.☆179Updated this week
- GitHub Secret Scanning Auto Remediator (GSSAR)☆45Updated 3 weeks ago
- A broker system between a public service and a private service☆111Updated last week
- Checkmarx CxFlow GitHub Action with SARIF output☆55Updated 3 months ago
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆56Updated last year
- SPDX Command Line Tools using the Spdx-Java-Library☆80Updated 2 months ago
- ☆80Updated last year
- Technical Advisory Council☆129Updated this week
- OSPO Landscape☆38Updated 3 months ago
- Checkmarx Scan Github Action☆31Updated last year
- Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis☆42Updated 10 months ago
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆210Updated 2 months ago
- OWASP Foundation Web Respository☆28Updated 11 months ago
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated last year
- Example of using Actions OIDC token to proxy into a private network☆96Updated 4 months ago
- OpenSSF Security Tooling Working Group☆313Updated last month
- OpenID Shared Signals Working Group Repository☆65Updated last week
- Official GitHub Action for OpenSSF Scorecard.☆324Updated last week