Scans your Github Actions for security issues
☆117Jul 6, 2026Updated this week
Alternatives and similar repositories for github-actions-scanner
Users that are interested in github-actions-scanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- poutine, a supply chain vulnerability scanner for build pipelines☆487Jun 30, 2026Updated last week
- Hands-on practical use of HTTP security headers as browser security controls to help secure web applications☆22Jun 14, 2026Updated 3 weeks ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆53Jun 18, 2026Updated 2 weeks ago
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆43May 21, 2026Updated last month
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆553Jun 22, 2026Updated 2 weeks ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆270Mar 30, 2026Updated 3 months ago
- Web cache poisoning vulnerability scanner.☆74May 5, 2022Updated 4 years ago
- Snyk Node Runtime Agent☆16Apr 12, 2022Updated 4 years ago
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆1,210Jun 30, 2026Updated last week
- Detect SSRF within Caido☆51Apr 17, 2026Updated 2 months ago
- ☆11Jul 28, 2020Updated 5 years ago
- GitHub Action adding a comment with information about new npm dependencies detected in a pull request☆18Jun 22, 2026Updated 2 weeks ago
- Professional Wargaming LLM Toolbox☆28Jul 9, 2025Updated 11 months ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆108Dec 18, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Improve automated and semi-automated active scanning in Burp Pro☆66Jun 4, 2025Updated last year
- ☆29Dec 26, 2025Updated 6 months ago
- Burp Enterprise Toolkit☆12Feb 25, 2022Updated 4 years ago
- Tool for fetching all the available waybackmachine snapshot urls☆26Oct 8, 2024Updated last year
- Repository containing a set of policies for aws resources created with terraform☆11Sep 16, 2019Updated 6 years ago
- Security tool against dependency typosquatting attacks☆55Jun 29, 2026Updated last week
- GitHub Actions Cache Native Malware - for Educational and Research Purposes only.☆162May 8, 2026Updated 2 months ago
- How GitHub Actions workflows can be hacked☆185Aug 23, 2024Updated last year
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆90Jun 15, 2026Updated 3 weeks ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ESLint plugin with rules for finding security issues in React projects.☆19Jun 28, 2025Updated last year
- Introducing CICDash — an open-source dashboard for visualizing your GitHub Actions (GHA) workflow trends.☆15Jan 4, 2025Updated last year
- Complete source code for tutorial on how to deploy Django to Kubernetes on AWS (EKS, RDS, EFS)☆14Nov 22, 2024Updated last year
- A collection of pen-testing/hacking scripts. Various uses.☆13Oct 24, 2020Updated 5 years ago
- Orchestrate GitHub Actions Security☆328Jun 10, 2026Updated 3 weeks ago
- Discover hidden parameters in Caido☆47May 23, 2026Updated last month
- Just a place to share some things I've written while participating in Hack The Box.☆18Jun 5, 2020Updated 6 years ago
- ☆15Jun 27, 2020Updated 6 years ago
- This eBPF module will drop any IPv4 packets that have the RFC 3514 "evil bit" set.☆19Jun 16, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆26Feb 3, 2026Updated 5 months ago
- A repository of the 10 million live most popular websites☆45Dec 21, 2022Updated 3 years ago
- ☆22Feb 25, 2026Updated 4 months ago
- A serverless application for processing AWS GuardDuty findings.☆11Sep 7, 2018Updated 7 years ago
- netbeacon - monitoring your network capture, NIDS or network analysis process☆20Apr 5, 2026Updated 3 months ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆786Aug 19, 2024Updated last year
- Ruggedy Vulnerability Management App☆14Dec 8, 2019Updated 6 years ago