philips-labs / continuous-compliance-actionLinks
Continuous Compliance makes it possible to enforce company policy on repositories. Continuous Compliance will automatically check your repository for mandatory files or requirements. When possible, it will create detailed Github issue with instructions on how to resolve it.
☆21Updated last year
Alternatives and similar repositories for continuous-compliance-action
Users that are interested in continuous-compliance-action are comparing it to the libraries listed below
Sorting:
- GitHub Secret Scanning Auto Remediator (GSSAR)☆44Updated 3 weeks ago
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Updated 2 years ago
- GitHub Code Scanning Mean Time to Remediate (GCSMTTR)☆14Updated last year
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆46Updated 2 years ago
- A GitHub action for organizations that enables advanced security code scanning on all new repos☆40Updated last month
- Github Action implementation of SLSA Provenance Generation☆48Updated last week
- Synchronize GitHub Code Scanning alerts to Jira issues☆88Updated 2 weeks ago
- ☆80Updated last year
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- An SBOM query language and associated utilities☆54Updated last year
- Website and API for OpenSSF Scorecard☆24Updated 2 weeks ago
- GitHub Actions Importer helps you plan and automate the migration of Azure DevOps, Bamboo, CircleCI, GitLab, Jenkins, and Travis CI pipel…☆55Updated 10 months ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated last month
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆155Updated last year
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆50Updated last year
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆134Updated last week
- Manage a uniform team of security managers for every organization in your enterprise☆17Updated 10 months ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆50Updated this week
- GitHub Advanced Security Policy as Code☆83Updated 2 weeks ago
- Action to detect if a secret is initially detected in a pull request☆17Updated this week
- SLSA level 3 action☆11Updated last year
- Example of using Actions OIDC token to proxy into a private network☆94Updated 3 months ago
- A GitHub action to measure GitHub Actions workflow metrics. An enabler to put the concept discussed in the post to practice - https://www…☆23Updated last year
- ☆42Updated 7 months ago
- Slack alert bot for matching Github Audit Events☆10Updated 7 months ago
- Play with GHAS API to provide posture data over time☆37Updated last week
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…☆10Updated this week
- Entitlements plugin for a robust audit log☆21Updated last week
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆68Updated 2 weeks ago
- Examples of Custom Secret Scanning Patterns☆162Updated 4 months ago