Scans your Github Actions for security issues
☆96May 2, 2026Updated this week
Alternatives and similar repositories for github-actions-scanner
Users that are interested in github-actions-scanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- poutine, a supply chain vulnerability scanner for build pipelines☆446Updated this week
- Hands-on practical use of HTTP security headers as browser security controls to help secure web applications☆20Jan 14, 2023Updated 3 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆53Jan 15, 2026Updated 3 months ago
- Hackfest Pro Track CTF 2021 Writeups (Les Renseignements Ultra)☆11Nov 22, 2021Updated 4 years ago
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆529Updated this week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆266Mar 30, 2026Updated last month
- Web cache poisoning vulnerability scanner.☆75May 5, 2022Updated 4 years ago
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆1,115Updated this week
- ☆11Jul 28, 2020Updated 5 years ago
- GitHub Action adding a comment with information about new npm dependencies detected in a pull request☆17Mar 30, 2024Updated 2 years ago
- Professional Wargaming LLM Toolbox☆27Jul 9, 2025Updated 9 months ago
- Programmatically open new JIRA tickets for all Snyk Issues☆53Oct 22, 2025Updated 6 months ago
- Improve automated and semi-automated active scanning in Burp Pro☆66Jun 4, 2025Updated 11 months ago
- Burp Enterprise Toolkit☆12Feb 25, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Dec 13, 2021Updated 4 years ago
- Keeper Secrets Manager Github Action☆16Updated this week
- ☆17Mar 5, 2023Updated 3 years ago
- Tool for fetching all the available waybackmachine snapshot urls☆24Oct 8, 2024Updated last year
- Repository containing a set of policies for aws resources created with terraform☆12Sep 16, 2019Updated 6 years ago
- Security tool against dependency typosquatting attacks☆56Apr 27, 2026Updated last week
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago
- How GitHub Actions workflows can be hacked☆181Aug 23, 2024Updated last year
- Legitimate bug bounty programs value ethical practices and provide clear rewards to researchers for identifying security flaws☆45Sep 22, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆88Apr 24, 2026Updated last week
- ESLint plugin with rules for finding security issues in React projects.☆19Jun 28, 2025Updated 10 months ago
- Complete source code for tutorial on how to deploy Django to Kubernetes on AWS (EKS, RDS, EFS)☆14Nov 22, 2024Updated last year
- A collection of pen-testing/hacking scripts. Various uses.☆13Oct 24, 2020Updated 5 years ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆41Aug 29, 2024Updated last year
- Just a place to share some things I've written while participating in Hack The Box.☆18Jun 5, 2020Updated 5 years ago
- *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.☆13Feb 21, 2022Updated 4 years ago
- ☆15Jun 27, 2020Updated 5 years ago
- ☆26Feb 3, 2026Updated 3 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Qualys Jira Connector☆11Apr 29, 2026Updated last week
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆23Apr 29, 2026Updated last week
- netbeacon - monitoring your network capture, NIDS or network analysis process☆20Apr 5, 2026Updated last month
- A serverless application for processing AWS GuardDuty findings.☆11Sep 7, 2018Updated 7 years ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆779Aug 19, 2024Updated last year
- An improvised Automated Threat Intelligent System with advanced vulnerability scanners and Opensource Intelligence Information gathering …☆10Jan 23, 2019Updated 7 years ago
- Looks for parameters in urls☆34Oct 14, 2024Updated last year