GitHub App to set and enforce security policies
☆1,394Mar 16, 2026Updated this week
Alternatives and similar repositories for allstar
Users that are interested in allstar are comparing it to the libraries listed below
Sorting:
- OpenSSF Scorecard - Security health metrics for Open Source☆5,315Updated this week
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,454Updated this week
- Supply-chain Levels for Software Artifacts☆1,823Mar 11, 2026Updated last week
- A tool to check the security settings of Github Organizations.☆75Feb 9, 2026Updated last month
- Software Supply Chain Transparency Log☆1,100Updated this week
- Code signing and transparency for containers and binaries☆5,734Updated this week
- Language-agnostic SLSA provenance generation for Github Actions☆554Mar 9, 2026Updated last week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆836Mar 28, 2025Updated 11 months ago
- Keyless Git signing using Sigstore☆1,066Mar 9, 2026Updated last week
- A security layer for Git repositories☆579Updated this week
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆519Updated this week
- Tfsec is now part of Trivy☆6,965Nov 10, 2025Updated 4 months ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,510Updated this week
- A tool for securing CI/CD workflows with version pinning.☆887Mar 5, 2026Updated 2 weeks ago
- Helping allocate resources to secure the critical open source projects we all depend on.☆390May 8, 2025Updated 10 months ago
- Evaluate source control (GitHub) security posture☆251Mar 8, 2023Updated 3 years ago
- all paths lead to clouds☆639Oct 11, 2023Updated 2 years ago
- A universal SBOM representation in protocol buffers☆320Mar 2, 2026Updated 2 weeks ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆119Mar 15, 2026Updated last week
- Supply Chain Query Tool☆13May 25, 2022Updated 3 years ago
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆11,240Mar 3, 2026Updated 2 weeks ago
- Go security checker☆8,726Updated this week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,760Mar 14, 2026Updated last week
- A vulnerability scanner for container images and filesystems☆11,733Mar 13, 2026Updated last week
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆8,545Updated this week
- Machine-readable specification for the attestation of security-relevant data.☆73Feb 24, 2026Updated 3 weeks ago
- Open source compliance tool for development platforms.☆286Oct 30, 2023Updated 2 years ago
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…☆964Sep 3, 2024Updated last year
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,142Mar 14, 2026Updated last week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,587Updated this week
- A static analysis tool for securing Go code☆2,166Jan 23, 2024Updated 2 years ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆33,205Updated this week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,205Nov 20, 2025Updated 4 months ago
- Open source vulnerability DB and triage service.☆2,530Updated this week
- A CLI tool for creating secure by design/default source repos.☆28Jul 29, 2024Updated last year
- Generate a score for your sbom to understand if it will actually be useful.☆239Aug 13, 2024Updated last year
- BadRobot - Operator Security Audit Tool☆226Feb 2, 2026Updated last month
- Artifact Metadata API☆1,564Mar 9, 2026Updated last week
- OpenSSF Security Tooling Working Group☆321Jul 6, 2025Updated 8 months ago