kevinswiber / spego
A set of policies for Open Policy Agent to validate OpenAPI definitions.
☆18Updated 9 months ago
Related projects: ⓘ
- API linting rules☆21Updated this week
- OPA Dependency Manager (ODM)☆11Updated 3 months ago
- The Community repository is the place to go for support with OPA and OPA Sub-Projects, like Conftest and Gatekeeper.☆32Updated 2 years ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆31Updated 2 months ago
- Demo app duplicated in 5 languages (Go/JavaScript/Python/Ruby/Rust) showing how to go from source code to container image using melange+a…☆31Updated 8 months ago
- Github Action implementation of SLSA Provenance Generation☆47Updated 2 weeks ago
- Generate Rego from OpenAPI 3.0 specifications☆19Updated 4 years ago
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆25Updated 2 weeks ago
- ☆30Updated 4 months ago
- Submit SBOMs to GitHub's dependency submission API☆11Updated last year
- Open Policy Agent (OPA) Plugins for Backstage☆47Updated this week
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆45Updated 5 months ago
- Lint your Rego policies inside of Visual Studio Code☆15Updated 3 months ago
- Continuous Compliance makes it possible to enforce company policy on repositories. Continuous Compliance will automatically check your re…☆19Updated 3 months ago
- On-prem GitHub Actions runners, backed by Kubernetes☆35Updated 2 years ago
- Manage multiple repository updates all at once.☆138Updated 9 months ago
- Protocol Buffer specifications☆22Updated this week
- CLI audit tool for GitHub organization with OPA/Rego☆12Updated 9 months ago
- GitHub Apps in Golang, inspired by Probot☆18Updated last year
- OPA Authzed experiments☆14Updated 6 months ago
- a fast changelog generator sourced from PRs and Issues☆50Updated this week
- Present ZAProxy results in GitHub Advanced Security☆15Updated 3 months ago
- A simple tool for converting Rego (OPA) rule into command.☆28Updated 2 years ago
- Run ORT in your GitHub action workflow to do licensing, security and best practices checks and generate reports/SBOMs☆23Updated 3 months ago
- ☆24Updated last week
- A bridge enabling Pulumi CrossGuard to run OPA rules☆12Updated 3 months ago
- Purpose-built security agent for hosted runners☆28Updated last month
- Search Rekor for entries☆27Updated 2 months ago
- Action for generating SBOM attestations for workflow artifacts☆18Updated this week
- Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosign☆11Updated 3 years ago
- Tiny Rego library with helper functions for unit testing☆32Updated 7 months ago