google / osv-scanner-actionLinks
☆37Updated last week
Alternatives and similar repositories for osv-scanner-action
Users that are interested in osv-scanner-action are comparing it to the libraries listed below
Sorting:
- Orchestrate GitHub Actions Security☆295Updated 3 weeks ago
- Resources for the deps.dev API☆336Updated last week
- Official GitHub Action for OpenSSF Scorecard.☆330Updated last week
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆134Updated last week
- Open Source Vulnerability schema.☆206Updated this week
- Purpose-built security agent for hosted runners☆38Updated 3 weeks ago
- Generate SBOMs with gh CLI☆191Updated 3 months ago
- GitHub token permissions Monitor and Advisor actions☆324Updated last month
- GitHub Action that given an organization or repository, produces information about the contributors over the specified time period.☆130Updated last week
- Enrich SBOMs with data from third party services☆189Updated last week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆869Updated last week
- GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…☆209Updated last week
- Runtime Security Solution for your CI/CD Pipeline☆108Updated 2 months ago
- OSV-SCALIBR: A library for Software Composition Analysis☆487Updated this week
- A GitHub Action used for publishing an Action to ghcr.io as an OCI container.☆97Updated 3 weeks ago
- Verify provenance from SLSA compliant builders☆281Updated last month
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆329Updated this week
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆219Updated this week
- Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …☆170Updated this week
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆73Updated last week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆100Updated 3 weeks ago
- sbomasm: The Complete SBOM Management Toolkit☆77Updated last week
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆101Updated this week
- Format agnostic SBOM tooling☆116Updated 2 weeks ago
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆64Updated last year
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆36Updated 3 months ago
- Pin your GitHub actions to a specific hash☆124Updated 2 months ago
- Scans your Github Actions for security issues☆83Updated last week
- Utility that provides an API platform for validating, querying and managing BOM data☆118Updated 2 weeks ago
- Log monitor for Rekor to verify immutability and monitor entries☆37Updated this week