A GitHub App that acts like a Security Token Service (STS) for the Github API
☆372Jul 14, 2026Updated this week
Alternatives and similar repositories for app
Users that are interested in app are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Scan GitHub Actions Workflow logs for IOCs☆19Updated this week
- ☆58Updated this week
- A GitHub Action used for publishing an Action to ghcr.io as an OCI container.☆128Aug 8, 2025Updated 11 months ago
- Throw a tag at it and it comes back with a checksum.☆186Updated this week
- Keyless Git signing using Sigstore☆1,110Updated this week
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆88Updated this week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆1,222Jul 7, 2026Updated last week
- #supply #chain #attack #detection☆670Updated this week
- A Go library for acquiring a forward-looking lock in Google Cloud Storage.☆16Mar 13, 2025Updated last year
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- GitHub Actions linter☆249Updated this week
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆59Jul 7, 2026Updated last week
- Add CA certificates into containers☆171Jun 30, 2026Updated 2 weeks ago
- Expand IAM Actions with Wildcards☆35Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Software Supply Chain Security Platform☆411Updated this week
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆536Updated this week
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆31Dec 17, 2024Updated last year
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Apr 23, 2024Updated 2 years ago
- ☆20Jun 30, 2026Updated 2 weeks ago
- GitHub Action to automate versioning, releases, and documentation for Terraform modules in monorepos.☆224Updated this week
- A tool for securing CI/CD workflows with version pinning.☆952Jul 2, 2026Updated last week
- ☆23Jul 1, 2026Updated last week
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆101Jun 22, 2026Updated 3 weeks ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆146Jan 2, 2025Updated last year
- GitHub token permissions Monitor and Advisor actions☆372Jan 31, 2026Updated 5 months ago
- Build OCI images from APK packages directly without Dockerfile☆1,649Updated this week
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆510Jun 27, 2025Updated last year
- Cloud Commotion intends to cause chaos to simulate security incidents☆148Jun 18, 2024Updated 2 years ago
- ☆59Updated this week
- Software Supply Chain Transparency Log☆1,177Updated this week
- A repository containing a collection of "glue" modules for encapsulating common Cloud Run patterns.☆29Updated this week
- ☆29Aug 9, 2024Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆48Jun 23, 2026Updated 3 weeks ago
- A CLI used to work with the Wolfi OSS project☆72Updated this week
- Static analysis for GitHub Actions☆5,853Updated this week
- Language-agnostic SLSA provenance generation for Github Actions☆586Mar 29, 2026Updated 3 months ago
- Sigstore user stories☆32Aug 25, 2023Updated 2 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆61Oct 19, 2023Updated 2 years ago
- [Experimental] jail for Go modules☆139Updated this week