Alternatives and similar repositories for app:

Users that are interested in app are comparing it to the libraries listed below

• octo-sts / action
  ☆42Updated 6 months ago
• suzuki-shunsuke / tfprovidercheck
  CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…
  ☆85Updated this week
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆120Updated this week
• chainguard-dev / actions
  A collection of reusable Github Actions workflows.
  ☆130Updated this week
• chainguard-dev / digestabot
  Github Action to automatically update digests for container images.
  ☆58Updated last month
• github / audit-actions-workflow-runs
  Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded
  ☆63Updated last week
• wolfi-dev / wolfi-act
  Dynamic GitHub Actions from Wolfi packages
  ☆43Updated 11 months ago
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆134Updated last week
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆249Updated 2 years ago
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated last year
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆89Updated this week
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆74Updated this week
• github / cleanowners
  A GitHub Action to suggest removal of non-organization members from CODEOWNERS files
  ☆133Updated last week
• aquasecurity / trivy-checks
  ☆51Updated this week
• slsa-framework / slsa-verifier
  Verify provenance from SLSA compliant builders
  ☆257Updated 3 weeks ago
• DataDog / attache
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆52Updated 10 months ago
• aquasecurity / tracee-action
  Protect GitHub Actions with Tracee
  ☆81Updated 2 months ago
• open-policy-agent / setup-opa
  Sets up Open Policy Agent CLI in your GitHub Actions workflow.
  ☆49Updated last year
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆105Updated this week
• aquasecurity / tfsec-pr-commenter-action
  Add comments to pull requests where tfsec checks have failed
  ☆167Updated last year
• slsa-framework / slsa-github-generator-go
  ☆56Updated 2 years ago
• actions / publish-immutable-action
  A GitHub Action used for publishing an Action to ghcr.io as an OCI container.
  ☆82Updated 5 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆82Updated 4 months ago
• chainguard-dev / justtrustme
  ☆54Updated this week
• StyraInc / regal
  Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
  ☆297Updated this week
• slsa-framework / github-actions-demo
  Proof-of-concept SLSA provenance generator for GitHub Actions
  ☆99Updated 2 years ago
• anchore / sbom-action
  GitHub Action for creating software bill of materials using Syft.
  ☆184Updated last week
• rallyhealth / conftest-policy-packs
  Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.
  ☆58Updated last year
• suzuki-shunsuke / tfmv
  CLI to rename Terraform resources and generate moved blocks
  ☆135Updated this week
• mchmarny / s3cme
  Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…
  ☆104Updated last year