Alternatives and similar repositories for actions

Users that are interested in actions are comparing it to the libraries listed below

• debricked / cli
  Debricked's command line interface. It brings open source security, compliance and health to your project via the command prompt.
  ☆23Updated last week
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆192Updated this week
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆233Updated 3 weeks ago
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆356Updated this week
• snyk / actions
  A set of GitHub actions for checking your projects for vulnerabilities.
  ☆611Updated 3 months ago
• checkmarx-ts / checkmarx-cxflow-github-action
  Checkmarx CxFlow GitHub Action with SARIF output
  ☆55Updated 2 months ago
• slsa-framework / slsa-github-generator
  Language-agnostic SLSA provenance generation for Github Actions
  ☆543Updated 3 months ago
• rtCamp / action-phpcs-inspection
  GitHub Action for PHPCS inspection.
  ☆10Updated 6 years ago
• spdx / spdx-spec
  The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
  ☆353Updated this week
• psalm / psalm-github-security-scan
  Psalm Security Scanning for GitHub Actions
  ☆54Updated 2 months ago
• CycloneDX / cyclonedx-node-pnpm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js PNPM projects.
  ☆24Updated last month
• docker / scout-action
  Docker Scout GitHub Action
  ☆133Updated last month
• clearlydefined / service
  The service side of clearlydefined.io
  ☆50Updated last week
• OpenChain-Project / License-Compliance-Specification
  ☆37Updated last year
• github / codeql-action
  Actions for running CodeQL analysis
  ☆1,471Updated this week
• codacy / codacy-analysis-cli-action
  GitHub Action for the codacy-analysis-cli
  ☆64Updated 2 months ago
• docker / metadata-action
  GitHub Action to extract metadata (tags, labels) from Git reference and GitHub events for Docker
  ☆1,089Updated last week
• actions / dependency-review-action
  A GitHub Action for detecting vulnerable dependencies and invalid licenses in your PRs
  ☆783Updated this week
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆97Updated last week
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆110Updated this week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆230Updated this week
• package-url / packageurl-js
  JavaScript implementation of the package url spec
  ☆28Updated last week
• checkmarx-ts / checkmarx-github-action
  Checkmarx Scan Github Action
  ☆29Updated last year
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆267Updated this week
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆96Updated this week
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆102Updated last year
• github-early-access / generate-build-provenance
  Publish a signed build provenance from your GitHub Actions workflow
  ☆63Updated last year
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆337Updated 2 years ago
• rachmari / first-responder
  An action that you can run in your GitHub Actions workflow to first respond to team pings.
  ☆24Updated 2 years ago
• zkoppert / advanced-security-enforcer
  A GitHub action for organizations that enables advanced security code scanning on all new repos
  ☆42Updated this week