oxsecurity / megalinterLinks
π¦ MegaLinter analyzes 50 languages, 22 formats, 21 tooling formats, excessive copy-pastes, spelling mistakes and security issues in your repository sources with a GitHub Action, other CI tools or locally.
β2,348Updated this week
Alternatives and similar repositories for megalinter
Users that are interested in megalinter are comparing it to the libraries listed below
Sorting:
- Static checker for GitHub Actions workflow filesβ3,459Updated this week
- Runs Trivy as GitHub action to scan your Docker container image for vulnerabilitiesβ1,135Updated last week
- A curated list of awesome self-hosted GitHub Action runners in a large comparison matrixβ841Updated 10 months ago
- Update multiple repositories in with one commandβ1,129Updated this week
- Protect your secrets using Gitleaks-Actionβ497Updated 5 months ago
- git-xargs is a command-line tool (CLI) for making updates across multiple Github repositories with a single command.β1,069Updated 2 weeks ago
- A suite of tools to automate software compliance checks.β1,879Updated this week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, anβ¦β930Updated this week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructβ¦β2,544Updated this week
- A linter for YAML files.β3,267Updated 2 weeks ago
- GitHub App to set and enforce security policiesβ1,380Updated this week
- A tool for securing CI/CD workflows with version pinning.β877Updated 5 months ago
- β811Updated 2 weeks ago
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to startβ3,193Updated 11 months ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managerβ¦β856Updated last week
- Cloud native secrets management for developers - never leave your command line for secrets.β3,157Updated last year
- Supply-chain Levels for Software Artifactsβ1,783Updated this week
- Code signing and transparency for containers and binariesβ5,496Updated last week
- A set of GitHub actions for checking your projects for vulnerabilities.β606Updated last month
- Linting for your git commit messagesβ926Updated last year
- validate the structure of your container imagesβ2,443Updated this week
- Quickly clone or backup an entire org/users repositories into one directory - Supports GitHub, GitLab, Bitbucket, and more ππ₯β1,905Updated this week
- Tfsec is now part of Trivyβ6,935Updated last month
- Detect, track and alert on infrastructure driftβ2,598Updated 2 months ago
- A GitHub Action for detecting vulnerable dependencies and invalid licenses in your PRsβ757Updated 2 weeks ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystemsβ8,129Updated this week
- An enterprise friendly way of detecting and preventing secrets in code.β4,343Updated 9 months ago
- An opinionated Dockerfile linter.β1,027Updated 2 years ago
- Official GitHub Action for OpenSSF Scorecard.β343Updated this week
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software suppβ¦β3,485Updated this week