philips-labs / continuous-compliance-actionLinks
Continuous Compliance makes it possible to enforce company policy on repositories. Continuous Compliance will automatically check your repository for mandatory files or requirements. When possible, it will create detailed Github issue with instructions on how to resolve it.
☆22Updated 2 weeks ago
Alternatives and similar repositories for continuous-compliance-action
Users that are interested in continuous-compliance-action are comparing it to the libraries listed below
Sorting:
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆33Updated 3 years ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆52Updated 2 weeks ago
- GitHub Advance Security Compliance Action☆134Updated 2 years ago
- ☆50Updated last week
- Github Action implementation of SLSA Provenance Generation☆50Updated last week
- SLSA level 3 action☆11Updated last year
- Example of using Actions OIDC token to proxy into a private network☆99Updated 7 months ago
- ☆81Updated last year
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆136Updated last week
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆75Updated last week
- GitHub Advanced Security Policy as Code☆90Updated 2 weeks ago
- A simple tool for converting Rego (OPA) rule into command.☆31Updated 3 years ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆157Updated last year
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆54Updated 3 weeks ago
- ☆57Updated 3 years ago
- ☆24Updated this week
- Load used actions from an entire organization☆17Updated 3 weeks ago
- Synchronize GitHub Code Scanning alerts to Jira issues☆93Updated 2 weeks ago
- A GitHub action to measure GitHub Actions workflow metrics. An enabler to put the concept discussed in the post to practice - https://www…☆22Updated last year
- Unified Policy Engine☆64Updated last month
- Generate SBOMs with gh CLI☆194Updated 4 months ago
- An SBOM query language and associated utilities☆54Updated last year
- Lists all InnerSource projects of a company in an interactive and easy to use way. Can be used as a template for implementing the "InnerS…☆150Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆101Updated this week
- Git action to generate security lint report for Kubernetes workload YAML files on PR☆28Updated 3 years ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- An OIDC client to retrieve a GitHub API scoped token from within an Actions workflow☆30Updated last year
- GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.☆196Updated 7 months ago
- Lambda function for verifying signed images in ECS☆33Updated last year
- CLI for searching Rego policies☆106Updated 3 years ago