octodemo / sbom-dependency-submissionLinks
Demo and resources that show how SBOMs can be used with GitHub's dependency graph
☆26Updated 2 years ago
Alternatives and similar repositories for sbom-dependency-submission
Users that are interested in sbom-dependency-submission are comparing it to the libraries listed below
Sorting:
- Synchronize GitHub Code Scanning alerts to Jira issues☆89Updated 3 weeks ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆156Updated last year
- Checkmarx CxFlow GitHub Action with SARIF output☆55Updated 2 months ago
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆55Updated 11 months ago
- Official GitHub Action for OpenSSF Scorecard.☆316Updated last week
- Find stale repositories in a GitHub organization.☆184Updated last week
- Play with GHAS API to provide posture data over time☆38Updated last month
- GitHub Advanced Security Policy as Code☆84Updated 2 weeks ago
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆40Updated 3 weeks ago
- GitHub Action solution for creating repository through GitHub issue workflows.☆22Updated 2 years ago
- GitHub CLI extension for analyzing GitHub repository codeowners and branch protection rules.☆13Updated last year
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts☆23Updated 3 months ago
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆73Updated last year
- Examples of Custom Secret Scanning Patterns☆162Updated 4 months ago
- Bypass approval and checks in order to merge an emergency change to the main branch with audit controls.☆50Updated 2 weeks ago
- Labels issues using OpenAI's Classification API powered by GPT-3 models!☆20Updated 2 years ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆46Updated 2 years ago
- Deprecated; please use https://github.com/marketplace/actions/fortify-ast-scan instead☆13Updated last year
- Runs Dependabot Updates via GitHub Actions.☆102Updated this week
- GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.☆194Updated 3 months ago
- A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.☆18Updated last year
- This tool allows GHES administrators to sync Actions to their instances☆124Updated last month
- Checkmarx Scan Github Action☆30Updated last year
- ☆80Updated last year
- A GitHub App that allows you to contribute upstream using private mirrors of public projects☆163Updated last month
- A tool for syncing the CodeQL Action from GitHub.com to GitHub Enterprise Server, including copying the CodeQL bundle.☆42Updated 2 weeks ago
- Automatically open a pull request for repositories that have no CONTRIBUTING.md file☆36Updated 2 months ago
- Migration CLI for GitHub to GitHub migrations☆367Updated last week
- This bootcamp is designed to familiarize you with GitHub Advanced Security (GHAS) so that you can better understand how to use it in your…☆64Updated 11 months ago