GitHub App to set and enforce security policies
☆1,391Updated this week
Alternatives and similar repositories for allstar
Users that are interested in allstar are comparing it to the libraries listed below
Sorting:
- OpenSSF Scorecard - Security health metrics for Open Source☆5,283Updated this week
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,450Updated this week
- Supply-chain Levels for Software Artifacts☆1,814Feb 20, 2026Updated last week
- Code signing and transparency for containers and binaries☆5,683Updated this week
- Software Supply Chain Transparency Log☆1,088Updated this week
- Keyless Git signing using Sigstore☆1,063Updated this week
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆517Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,416Updated this week
- Tfsec is now part of Trivy☆6,956Nov 10, 2025Updated 3 months ago
- Language-agnostic SLSA provenance generation for Github Actions☆549Updated this week
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆11,204Feb 18, 2026Updated last week
- A tool for securing CI/CD workflows with version pinning.☆883Jun 27, 2025Updated 8 months ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆832Mar 28, 2025Updated 11 months ago
- A tool to check the security settings of Github Organizations.☆75Feb 9, 2026Updated 2 weeks ago
- A security layer for Git repositories☆578Updated this week
- A universal SBOM representation in protocol buffers☆316Feb 18, 2026Updated last week
- A vulnerability scanner for container images and filesystems☆11,602Feb 22, 2026Updated last week
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆8,480Updated this week
- all paths lead to clouds☆638Oct 11, 2023Updated 2 years ago
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,201Nov 20, 2025Updated 3 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆117Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆32,280Updated this week
- Evaluate source control (GitHub) security posture☆251Mar 8, 2023Updated 2 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆238Aug 13, 2024Updated last year
- Go security checker☆8,699Updated this week
- Open source compliance tool for development platforms.☆285Oct 30, 2023Updated 2 years ago
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,129Updated this week
- BadRobot - Operator Security Audit Tool☆225Feb 2, 2026Updated 3 weeks ago
- A static analysis tool for securing Go code☆2,167Jan 23, 2024Updated 2 years ago
- in-toto is a framework to protect supply chain integrity.☆976Feb 11, 2026Updated 2 weeks ago
- Sigstore OIDC PKI☆807Updated this week
- Helping allocate resources to secure the critical open source projects we all depend on.☆387May 8, 2025Updated 9 months ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,574Updated this week
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…☆963Sep 3, 2024Updated last year
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆13,103Updated this week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,729Updated this week
- Open source vulnerability DB and triage service.☆2,501Updated this week
- OpenSSF Security Tooling Working Group☆320Jul 6, 2025Updated 7 months ago
- Cloud Native Runtime Security☆8,690Updated this week