edplato / trufflehog-actions-scan
Scan repository for secrets with basic defaults in place for easy setup.
☆21Updated 2 years ago
Related projects: ⓘ
- ☆50Updated 2 years ago
- Github Action for integrating Security Alerts with JIRA☆53Updated last week
- Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec☆110Updated last year
- vscode extension for tfsec☆30Updated last year
- ☆21Updated 2 weeks ago
- ☆52Updated last year
- Continuous Compliance makes it possible to enforce company policy on repositories. Continuous Compliance will automatically check your re…☆19Updated 3 months ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆45Updated 5 months ago
- An Action to wrap creating an SBOM via REST API☆15Updated 2 weeks ago
- This GitHub Action runs Bridgecrew against infrastructure-as-code, open source packages, container images, and CI/CD configurations to id…☆72Updated 9 months ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆35Updated 3 weeks ago
- Add comments to pull requests where tfsec checks have failed☆164Updated last year
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆73Updated 5 months ago
- Dockerfile Security Checker using OPA Rego policies with Conftest☆58Updated 2 years ago
- Offensive Terraform Website☆44Updated 3 years ago
- CloudCustodian Rules engine for cloud security and governance, DSL in yaml for policies to query, filter, and take actions on resources☆16Updated last year
- A tool to check the security settings of Github Organizations.☆68Updated last year
- Static analysis for CloudFormation templates to identify common misconfiguration☆58Updated 2 years ago
- Awesome Snyk community contributions, champions, integrations, blogs, tools and more 💜☆42Updated 2 years ago
- Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts☆47Updated 2 weeks ago
- GitHub Code Scanning Mean Time to Remediate (GCSMTTR)☆14Updated last year
- Github action to benchmark dockerfiles in github repository.☆12Updated last year
- ☆30Updated this week
- GitHub Secret Scanning Auto Remediator (GSSAR)☆39Updated last year
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆42Updated last month
- A broker system between a public service and a private service☆97Updated this week
- A multi scanner for docker images. It drives Clair, Anchore, Trivy, Snyk, Grype, AWS ECR scans and consolidates the results.☆14Updated last year
- CLI tool for auditing S3 buckets☆109Updated last year
- Github Action implementation of SLSA Provenance Generation☆47Updated 2 weeks ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆159Updated 10 months ago