ossf / scorecard-visualizer

Related projects ⓘ

Alternatives and complementary repositories for scorecard-visualizer

• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆32Updated 4 months ago
• package-url / packageurl-js
  JavaScript implementation of the package url spec
  ☆26Updated 2 months ago
• npm / provenance
  Details on npm provenance
  ☆11Updated 2 months ago
• google / osv-scanner-action
  ☆16Updated last week
• ossf / scorecard-webapp
  Website and API for OpenSSF Scorecard
  ☆22Updated this week
• security-alert / security-alert
  [GitHub] A Command Line ToolKit for GitHub Security Alert.
  ☆26Updated 2 months ago
• github / entitlements-gitrepo-auditor-plugin
  Entitlements plugin for a robust audit log
  ☆20Updated this week
• kevinswiber / spego
  A set of policies for Open Policy Agent to validate OpenAPI definitions.
  ☆18Updated 10 months ago
• fossas / fossa-action
  Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
  ☆46Updated 3 weeks ago
• octokit / request-error.js
  Error class for Octokit request errors
  ☆15Updated this week
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆95Updated 6 months ago
• probot / example-github-action
  Probot & GitHub Action example
  ☆35Updated last week
• philips-labs / continuous-compliance-action
  Continuous Compliance makes it possible to enforce company policy on repositories. Continuous Compliance will automatically check your re…
  ☆19Updated 5 months ago
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆256Updated last month
• nodeshift / npcheck
  "Node Package Checker" - A tool to run various checks on npm modules
  ☆16Updated last month
• sigstore / root-signing
  TUF repository for Sigstore trust root
  ☆88Updated this week
• pholleran / get-consensus
  A Probot app to require consensus from one or more teams
  ☆14Updated last year
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆81Updated last month
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆41Updated 3 years ago
• philips-labs / slsa-provenance-action
  Github Action implementation of SLSA Provenance Generation
  ☆47Updated this week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆265Updated this week
• advanced-security / sbom-generator-action
  ☆15Updated 8 months ago
• step-security / agent
  Purpose-built security agent for hosted runners
  ☆29Updated 3 months ago
• CycloneDX / gh-node-module-generatebom
  GitHub action to generate a CycloneDX SBOM for Node.js
  ☆20Updated 3 months ago
• microsoft / sarif-js-sdk
  JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…
  ☆27Updated 5 months ago
• elstudio / actions-settings
  GitHub Actions to run Probot settings and set defaults
  ☆19Updated last year
• saucelabs / check-my-repo
  An automated tool that verifies Sauce Labs repositories to comply with OSS best practices
  ☆35Updated this week
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated 9 months ago
• todogroup / osposurvey
  Open Source Programs (OSPO) Survey
  ☆71Updated last month
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆119Updated 5 months ago