octodemo / sbom-dependency-submissionLinks
Demo and resources that show how SBOMs can be used with GitHub's dependency graph
☆26Updated 2 years ago
Alternatives and similar repositories for sbom-dependency-submission
Users that are interested in sbom-dependency-submission are comparing it to the libraries listed below
Sorting:
- Synchronize GitHub Code Scanning alerts to Jira issues☆87Updated 2 months ago
- Calculates dependencies for a Go build-target and submits the list to the Dependency Submission API☆58Updated this week
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆154Updated 11 months ago
- Automatically open a pull request for repositories that have no CONTRIBUTING.md file☆35Updated last month
- Bypass approval and checks in order to merge an emergency change to the main branch with audit controls.☆50Updated this week
- ☆72Updated 2 weeks ago
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆72Updated last year
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆54Updated 10 months ago
- ☆65Updated 11 months ago
- Play with GHAS API to provide posture data over time☆36Updated 4 months ago
- GitHub Action solution for creating repository through GitHub issue workflows.☆21Updated 2 years ago
- Monitors GitHub Enterprise Importer (GEI) migrations for an organization through a simple command line tool☆12Updated this week
- Examples of Custom Secret Scanning Patterns☆161Updated 3 months ago
- Checkmarx CxFlow GitHub Action with SARIF output☆54Updated 3 weeks ago
- Find stale repositories in a GitHub organization.☆182Updated this week
- A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.☆18Updated 11 months ago
- A GitHub CLI extension for GitHub Code-Scanning!☆24Updated 2 years ago
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆13Updated 2 months ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆50Updated this week
- Migration CLI for GitHub to GitHub migrations☆359Updated 2 weeks ago
- ☆80Updated last year
- GitHub Advanced Security Policy as Code☆82Updated 2 weeks ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆46Updated 2 years ago
- GitHub Secret Scanning Auto Remediator (GSSAR)☆44Updated last week
- This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…☆28Updated 2 years ago
- Official GitHub Action for OpenSSF Scorecard.☆308Updated this week
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆39Updated last month
- Actions workflows to help organizations manage the process of users requesting to use GitHub Actions from Marketplace and approving or de…☆24Updated last week
- Example of using Actions OIDC token to proxy into a private network☆94Updated 2 months ago
- A tool for syncing the CodeQL Action from GitHub.com to GitHub Enterprise Server, including copying the CodeQL bundle.☆41Updated this week