microsoft / DevSkim-Action
The GitHub Action for DevSkim
☆39Updated 10 months ago
Alternatives and similar repositories for DevSkim-Action:
Users that are interested in DevSkim-Action are comparing it to the libraries listed below
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆95Updated 9 months ago
- Microsoft Security DevOps for GitHub Actions.☆113Updated 2 months ago
- GitHub Advanced Security Policy as Code☆77Updated 2 weeks ago
- Reusable workflows for developing actions☆59Updated last week
- [DEPRECATED] This repo contains github actions for various azure services.☆57Updated 5 years ago
- ☆78Updated 9 months ago
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆54Updated 5 months ago
- GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…☆194Updated this week
- Synchronize GitHub Code Scanning alerts to Jira issues☆81Updated 3 months ago
- ☆42Updated last week
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆69Updated 9 months ago
- Official GitHub Action for OpenSSF Scorecard.☆276Updated this week
- GitHub Action for injecting variables from source files☆15Updated 5 months ago
- Checkmarx Scan Github Action☆28Updated 6 months ago
- Automate your GitHub workflows using Azure CLI scripts☆135Updated 2 weeks ago
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆38Updated 11 months ago
- About GitHub Actions runner images provided by 3rd parties☆90Updated 7 months ago
- Convert Azure Pipelines YAML to GitHub Actions YAML☆145Updated last week
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆44Updated this week
- 🏷️ GitHub Action to remove labels☆55Updated 10 months ago
- This action uploads and scans code to Veracode for a static policy (or sandbox) scan.☆30Updated 7 months ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆45Updated last year
- .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…☆198Updated last week
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆152Updated 7 months ago
- GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.☆184Updated this week
- Enable GitHub developers to trigger Azure Pipelines from a GitHub Actions workflow☆82Updated 5 months ago
- GitHub Advance Security Compliance Action☆132Updated 2 years ago
- Find stale repositories in a GitHub organization.☆150Updated this week
- GitHub Action solution for creating repository through GitHub issue workflows.☆20Updated last year
- Enable GitHub developers to parameterize the values in their config files from a GitHub Action workflow☆121Updated 2 years ago