philips-labs / continuous-compliance-actionLinks
Continuous Compliance makes it possible to enforce company policy on repositories. Continuous Compliance will automatically check your repository for mandatory files or requirements. When possible, it will create detailed Github issue with instructions on how to resolve it.
☆22Updated last year
Alternatives and similar repositories for continuous-compliance-action
Users that are interested in continuous-compliance-action are comparing it to the libraries listed below
Sorting:
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆33Updated 2 years ago
- Github Action implementation of SLSA Provenance Generation☆49Updated last week
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆51Updated last year
- ☆44Updated 9 months ago
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆134Updated last week
- Example of using Actions OIDC token to proxy into a private network☆96Updated 4 months ago
- ☆80Updated last year
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆72Updated 2 weeks ago
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 2 months ago
- Generate SBOMs with gh CLI☆189Updated 2 months ago
- A simple tool for converting Rego (OPA) rule into command.☆30Updated 3 years ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆50Updated 2 weeks ago
- An SBOM query language and associated utilities☆54Updated last year
- Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.☆135Updated last year
- GitHub Advanced Security Policy as Code☆86Updated last month
- Go library for Sigstore signing and verification☆18Updated last year
- Orchestrate GitHub Actions Security☆294Updated this week
- GitHub Action for creating software bill of materials using Syft.☆196Updated this week
- Website and API for OpenSSF Scorecard☆24Updated last week
- Synchronize GitHub Code Scanning alerts to Jira issues☆89Updated last week
- SLSA level 3 action☆11Updated last year
- A Github Action to automatically update digests for container images.☆67Updated 2 months ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- A GitHub Action for using Conftest☆33Updated 3 years ago
- An Action to wrap creating an SBOM via REST API☆18Updated last week
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆66Updated this week
- Throw a tag at it and it comes back with a checksum.☆141Updated last week
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- Trivy plugin for OCI referrers☆23Updated last year