mheap / pin-github-actionLinks
Pin your GitHub actions to a specific hash
☆125Updated 2 months ago
Alternatives and similar repositories for pin-github-action
Users that are interested in pin-github-action are comparing it to the libraries listed below
Sorting:
- Orchestrate GitHub Actions Security☆295Updated last month
- GitHub token permissions Monitor and Advisor actions☆324Updated 2 months ago
- GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…☆211Updated this week
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆135Updated this week
- Official GitHub Action for OpenSSF Scorecard.☆334Updated this week
- Throw a tag at it and it comes back with a checksum.☆151Updated this week
- A Github Action to ensure that actions are pinned to full length commit SHAs☆47Updated 2 weeks ago
- GitHub Action - Yaml Lint☆107Updated 2 years ago
- Tool to validate GitHub Action and Workflow YAML files☆338Updated 2 weeks ago
- Github Action implementation of SLSA Provenance Generation☆50Updated last week
- A GitHub Action used for publishing an Action to ghcr.io as an OCI container.☆103Updated last month
- Generate docs for GitHub actions☆98Updated this week
- An Action for printing OIDC claims in GitHub Actions.☆109Updated this week
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆225Updated last week
- Generate SBOMs with gh CLI☆193Updated 3 months ago
- Common Release Data for various projects in a consumable format, automatically updated.☆177Updated this week
- SPDX Merge tool☆47Updated 5 months ago
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated last year
- GitHub Action to check PRs for signed commits☆55Updated last year
- Verify provenance from SLSA compliant builders☆284Updated last month
- The containerbase project's base image source☆46Updated this week
- ☆49Updated 2 weeks ago
- The GitHub CODEOWNERS file validator☆237Updated last year
- Action for generating SBOM attestations for workflow artifacts☆38Updated 2 weeks ago
- Action for generating attestations for workflow artifacts☆59Updated this week
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆75Updated this week
- Enrich SBOMs with data from third party services☆192Updated 3 weeks ago
- Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.☆135Updated last year
- A bot tool to disable and re-enable "Include administrators" option in branch protection☆72Updated last year
- An SBOM query language and associated utilities☆54Updated last year