philips-labs / continuous-compliance-actionLinks
Continuous Compliance makes it possible to enforce company policy on repositories. Continuous Compliance will automatically check your repository for mandatory files or requirements. When possible, it will create detailed Github issue with instructions on how to resolve it.
☆22Updated 2 weeks ago
Alternatives and similar repositories for continuous-compliance-action
Users that are interested in continuous-compliance-action are comparing it to the libraries listed below
Sorting:
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆33Updated 2 years ago
- Github Action implementation of SLSA Provenance Generation☆50Updated last week
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆52Updated 2 weeks ago
- ☆80Updated last year
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- Generate SBOMs with gh CLI☆191Updated 2 months ago
- GitHub Advanced Security Policy as Code☆86Updated last week
- GitHub Action for creating software bill of materials using Syft.☆198Updated last week
- Synchronize GitHub Code Scanning alerts to Jira issues☆91Updated last week
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆134Updated last week
- An SBOM query language and associated utilities☆54Updated last year
- A Github Action to automatically update digests for container images.☆71Updated 3 months ago
- Website and API for OpenSSF Scorecard☆24Updated this week
- ☆57Updated 3 years ago
- ☆45Updated last week
- A collection of reusable Github Actions workflows.☆136Updated this week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 3 months ago
- A simple tool for converting Rego (OPA) rule into command.☆30Updated 3 years ago
- A tool to create, transform and attest VEX metadata☆151Updated last week
- Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.☆135Updated last year
- Cosign Github Action☆153Updated last week
- SLSA level 3 action☆11Updated last year
- Trivy plugin for OCI referrers☆23Updated last year
- Go library for Sigstore signing and verification☆18Updated last year
- GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.☆196Updated 5 months ago
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆72Updated last week
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆42Updated last week
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…☆11Updated this week
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆40Updated last week
- Dynamic GitHub Actions from Wolfi packages☆44Updated 3 months ago