fossas / fossa-action
Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
☆51Updated last month
Alternatives and similar repositories for fossa-action:
Users that are interested in fossa-action are comparing it to the libraries listed below
- ☆15Updated last month
- A GitHub Action used for publishing an Action to ghcr.io as an OCI container.☆57Updated 4 months ago
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆127Updated this week
- Runner Container Hooks for GitHub Actions☆85Updated 3 months ago
- An Action for printing OIDC claims in GitHub Actions.☆82Updated 7 months ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆33Updated last month
- ☆44Updated this week
- GitHub Action to check PRs for signed commits☆52Updated 7 months ago
- Find stale repositories in a GitHub organization.☆153Updated this week
- A Pulumi package to facilitate interacting with GitHub☆62Updated this week
- Compare vulnerability scanners results (to make them better!)☆16Updated last week
- Proof-of-concept SLSA provenance generator for GitHub Actions☆99Updated 2 years ago
- Action for generating SBOM attestations for workflow artifacts☆25Updated this week
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆27Updated 9 months ago
- Reusable workflows for developing actions☆61Updated last month
- Generate docs for GitHub actions☆91Updated this week
- Generate SBOMs with gh CLI☆178Updated 5 months ago
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆27Updated 3 months ago
- ☆32Updated 4 months ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆48Updated 11 months ago
- A GitHub App that allows you to contribute upstream using private mirrors of public projects☆159Updated this week
- GitHub Action to expose GitHub runtime to the workflow☆68Updated last week
- GitHub Action that given an organization or repository, produces information about the contributors over the specified time period.☆117Updated this week
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated 10 months ago
- Run tfsec with reviewdog on pull requests to enforce security best practices☆73Updated last week
- GitHub token permissions Monitor and Advisor actions☆275Updated 2 weeks ago
- GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…☆196Updated this week
- HCL (HashiCorp Configuration Language) Extension for Visual Studio Code☆48Updated this week
- GitHub Actions Self Hosted Runners on Anthos GKE☆28Updated 3 years ago
- ☆46Updated this week