fossas / fossa-action
Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
☆51Updated last month
Alternatives and similar repositories for fossa-action:
Users that are interested in fossa-action are comparing it to the libraries listed below
- A GitHub Action used for publishing an Action to ghcr.io as an OCI container.☆63Updated 4 months ago
- ☆44Updated last week
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated 11 months ago
- ☆15Updated last month
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆33Updated last month
- Compare vulnerability scanners results (to make them better!)☆16Updated 2 weeks ago
- GitHub Action to check PRs for signed commits☆52Updated 7 months ago
- Probot & GitHub Action example☆34Updated this week
- Action for generating attestations for workflow artifacts☆44Updated last week
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆27Updated 9 months ago
- ☆40Updated 4 months ago
- Find stale repositories in a GitHub organization.☆154Updated last week
- Action for generating SBOM attestations for workflow artifacts☆25Updated last week
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆127Updated last week
- Runner Container Hooks for GitHub Actions☆84Updated 4 months ago
- Generate SBOMs with gh CLI☆178Updated 6 months ago
- GitHub Action that given an organization or repository, produces information about the contributors over the specified time period.☆117Updated last week
- An Action for printing OIDC claims in GitHub Actions.☆83Updated last week
- Proof-of-concept SLSA provenance generator for GitHub Actions☆99Updated 2 years ago
- GitHub Action to expose GitHub runtime to the workflow☆69Updated 2 weeks ago
- GitHub Action for creating software bill of materials using Syft.☆176Updated this week
- A Github Action to ensure that actions are pinned to full length commit SHAs☆39Updated last week
- GitHub CLI extension for working with CodeQL☆31Updated last month
- Lock Action to support deployment locking for the branch-deploy Action☆39Updated this week
- Set up your GitHub Actions workflow with a specific version of ORAS☆19Updated last week
- Reusable workflows for developing actions☆61Updated 2 months ago
- The containerbase project's base image source☆41Updated this week
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆48Updated 11 months ago
- A GitHub action to enable auto-merge on a pull request☆116Updated 6 months ago
- IssueOps commands in GitHub Actions☆113Updated 2 weeks ago