github-early-access / generate-build-provenanceLinks
Publish a signed build provenance from your GitHub Actions workflow
☆63Updated last year
Alternatives and similar repositories for generate-build-provenance
Users that are interested in generate-build-provenance are comparing it to the libraries listed below
Sorting:
- Action for generating attestations for workflow artifacts☆61Updated last week
- GitHub Action to expose GitHub runtime to the workflow☆83Updated last month
- An Action for printing OIDC claims in GitHub Actions.☆109Updated last month
- Code-signing for npm packages☆171Updated this week
- Official GitHub Action for OpenSSF Scorecard.☆339Updated last week
- Cosign Github Action☆168Updated last week
- Runner Container Hooks for GitHub Actions☆119Updated this week
- GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…☆214Updated last week
- A GitHub Action used for publishing an Action to ghcr.io as an OCI container.☆107Updated 2 months ago
- Find license compliance and security issues in your applications with FOSSA and GitHub Actions.☆58Updated this week
- ☆54Updated last week
- Verify provenance from SLSA compliant builders☆288Updated 3 months ago
- About GitHub Actions runner images provided by 3rd parties☆191Updated 2 months ago
- Find stale repositories in a GitHub organization.☆190Updated last week
- Go library for Sigstore signing and verification☆81Updated 2 weeks ago
- ☆415Updated this week
- Orchestrate GitHub Actions Security☆299Updated last week
- GitHub token permissions Monitor and Advisor actions☆338Updated 2 weeks ago
- GitHub Action to combine multiple PRs into a single one☆136Updated 7 months ago
- A GitHub App that allows you to contribute upstream using private mirrors of public projects☆169Updated last week
- GitHub Action for creating software bill of materials using Syft.☆206Updated this week
- GitHub Action to use Docker Buildx Bake as a high-level build command☆266Updated last week
- Search Rekor for entries☆38Updated this week
- GitHub Action that given an organization or repository, produces information about the contributors over the specified time period.☆129Updated last week
- A TypeScript library for creating dependency snapshots.☆52Updated last week
- A GitHub app to check that pull requests follow the Conventional Commits spec☆139Updated this week
- A GitHub Action to run the markdownlint-cli2 tool for linting Markdown/CommonMark files with the markdownlint library☆144Updated last week
- A GitHub action to enable auto-merge on a pull request☆128Updated 2 months ago
- Throw a tag at it and it comes back with a checksum.☆149Updated last week
- Codecov's Command Line Interface. Used for uploading to Codecov in your CI, Test Labelling, Local Upload, and more☆75Updated 3 months ago