oxsecurity / megalinter
π¦ MegaLinter analyzes 50 languages, 22 formats, 21 tooling formats, excessive copy-pastes, spelling mistakes and security issues in your repository sources with a GitHub Action, other CI tools or locally.
β2,091Updated this week
Alternatives and similar repositories for megalinter:
Users that are interested in megalinter are comparing it to the libraries listed below
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructβ¦β2,259Updated this week
- GitHub App to set and enforce security policiesβ1,293Updated this week
- Runs Trivy as GitHub action to scan your Docker container image for vulnerabilitiesβ917Updated this week
- automated releases based on conventional commitsβ1,886Updated 3 weeks ago
- A curated list of awesome self-hosted GitHub Action runners in a large comparison matrixβ772Updated last month
- Code signing and transparency for containers and binariesβ4,821Updated this week
- A linter for YAML files.β3,013Updated last week
- Actions for running CodeQL analysisβ1,235Updated this week
- Update multiple repositories in with one commandβ976Updated last month
- A set of GitHub actions for checking your projects for vulnerabilitiesβ545Updated 6 months ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystemsβ6,761Updated this week
- Static checker for GitHub Actions workflow filesβ3,059Updated 2 months ago
- Policy enforcement for your pipelines.β463Updated this week
- OpenSSF Scorecard - Security health metrics for Open Sourceβ4,830Updated last week
- An action for automatically labelling pull requestsβ2,102Updated last week
- Kubernetes controller for GitHub Actions self-hosted runnersβ5,071Updated last week
- Pull Requests for GitHub repository settingsβ971Updated this week
- Protect your secrets using Gitleaks-Actionβ380Updated 5 months ago
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software suppβ¦β2,956Updated this week
- A tool for securing CI/CD workflows with version pinning.β814Updated this week
- A GitHub Action for detecting vulnerable dependencies and invalid licenses in your PRsβ663Updated 3 weeks ago
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to startβ2,859Updated 2 months ago
- Supply-chain Levels for Software Artifactsβ1,633Updated this week
- A flexible JSON/YAML linter for creating automated style guides, with baked in support for OpenAPI (v3.1, v3.0, and v2.0), Arazzo v1.0, aβ¦β2,674Updated this week
- Drafts your next release notes as pull requests are merged into master.β3,554Updated 2 months ago
- A vulnerability scanner for container images and filesystemsβ9,608Updated this week
- Interactive Terraform visualization. State and configuration explorer.β3,112Updated 8 months ago
- β687Updated last week
- validate the structure of your container imagesβ2,371Updated 2 weeks ago
- A collection of JSON schema files including full APIβ3,300Updated this week