octo-sts/app external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

octo-sts/app

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/octo-sts/app)

Close

octo-sts / appView on GitHubMore

• External links
• Readme badge

A GitHub App that acts like a Security Token Service (STS) for the Github API

☆347May 5, 2026Updated this week

Alternatives and similar repositories for app

Users that are interested in app are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• chainguard-dev / ghscan

  View on GitHub
  Scan GitHub Actions Workflow logs for IOCs
  ☆17Updated this week
• octo-sts / action

  View on GitHub
  ☆56Apr 22, 2026Updated 2 weeks ago
• actions / publish-immutable-action

  View on GitHub
  A GitHub Action used for publishing an Action to ghcr.io as an OCI container.
  ☆122Aug 8, 2025Updated 9 months ago
• stacklok / frizbee

  View on GitHub
  Throw a tag at it and it comes back with a checksum.
  ☆175May 1, 2026Updated last week
• sigstore / gitsign

  View on GitHub
  Keyless Git signing using Sigstore
  ☆1,085Updated this week
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• step-security / harden-runner

  View on GitHub
  Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…
  ☆1,115Updated this week
• suzuki-shunsuke / tfprovidercheck

  View on GitHub
  CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…
  ☆87Updated this week
• chainguard-dev / malcontent

  View on GitHub
  #supply #chain #attack #detection
  ☆653Updated this week
• sethvargo / go-gcslock

  View on GitHub
  A Go library for acquiring a forward-looking lock in Google Cloud Storage.
  ☆15Mar 13, 2025Updated last year
• suzuki-shunsuke / ghalint

  View on GitHub
  GitHub Actions linter
  ☆239Updated this week
• semgr8ns / semgr8s

  View on GitHub
  Semgrep-based Policy Controller for Kubernetes
  ☆47Apr 4, 2025Updated last year
• chainguard-dev / incert

  View on GitHub
  Add CA certificates into containers
  ☆169Updated this week
• DataDog / attache

  View on GitHub
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆60Apr 23, 2026Updated 2 weeks ago
• cloud-copilot / iam-expand

  View on GitHub
  Expand IAM Actions with Wildcards
  ☆35Updated this week
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mindersec / minder

  View on GitHub
  Software Supply Chain Security Platform
  ☆399Updated this week
• chainguard-dev / clank

  View on GitHub
  Simple tool that allows you to detect imposter commits in GitHub Actions workflows.
  ☆30Dec 17, 2024Updated last year
• in-toto / witness

  View on GitHub
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆524Updated this week
• chainguard-dev / policy-catalog

  View on GitHub
  ☆20Updated this week
• mchmarny / s3cme

  View on GitHub
  Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…
  ☆103Apr 23, 2024Updated 2 years ago
• chainguard-sandbox / maxcve

  View on GitHub
  ☆22Apr 10, 2026Updated last month
• sethvargo / ratchet

  View on GitHub
  A tool for securing CI/CD workflows with version pinning.
  ☆931Apr 21, 2026Updated 2 weeks ago
• techpivot / terraform-module-releaser

  View on GitHub
  GitHub Action to automate versioning, releases, and documentation for Terraform modules in monorepos.
  ☆218Updated this week
• chainguard-dev / dfc

  View on GitHub
  (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.
  ☆100Apr 22, 2026Updated 2 weeks ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• ReversecLabs / cloud-security-vm

  View on GitHub
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆143Jan 2, 2025Updated last year
• GitHubSecurityLab / actions-permissions

  View on GitHub
  GitHub token permissions Monitor and Advisor actions
  ☆362Jan 31, 2026Updated 3 months ago
• chainguard-dev / apko

  View on GitHub
  Build OCI images from APK packages directly without Dockerfile
  ☆1,602Updated this week
• step-security / github-actions-goat

  View on GitHub
  GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment
  ☆501Jun 27, 2025Updated 10 months ago
• SecurityRunners / CloudCommotion

  View on GitHub
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆148Jun 18, 2024Updated last year
• sigstore / rekor

  View on GitHub
  Software Supply Chain Transparency Log
  ☆1,132Updated this week
• chainguard-dev / justtrustme

  View on GitHub
  ☆59Apr 20, 2026Updated 2 weeks ago
• chainguard-dev / terraform-infra-common

  View on GitHub
  A repository containing a collection of "glue" modules for encapsulating common Cloud Run patterns.
  ☆28Apr 22, 2026Updated 2 weeks ago
• zizmorcore / zizmor

  View on GitHub
  Static analysis for GitHub Actions
  ☆4,438May 1, 2026Updated last week
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• wolfi-dev / wolfictl

  View on GitHub
  A CLI used to work with the Wolfi OSS project
  ☆75Updated this week
• chainguard-dev / registry-redirect

  View on GitHub
  ☆29Aug 9, 2024Updated last year
• ossf / scorecard-monitor

  View on GitHub
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆48Apr 25, 2026Updated 2 weeks ago
• slsa-framework / slsa-github-generator

  View on GitHub
  Language-agnostic SLSA provenance generation for Github Actions
  ☆572Mar 29, 2026Updated last month
• rallyhealth / conftest-policy-packs

  View on GitHub
  Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.
  ☆60Oct 19, 2023Updated 2 years ago
• AkihiroSuda / gomodjail

  View on GitHub
  [Experimental] jail for Go modules
  ☆138Apr 13, 2026Updated 3 weeks ago
• sigstore / helm-sigstore

  View on GitHub
  Plugin for Helm to integrate the sigstore ecosystem
  ☆69Apr 24, 2026Updated 2 weeks ago