snyk / actions

Related projects: ⓘ

• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆265Updated 2 months ago
• aquasecurity / trivy-action
  Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
  ☆772Updated last month
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆203Updated this week
• actions / dependency-review-action
  A GitHub Action for detecting vulnerable dependencies and invalid licenses in your PRs
  ☆590Updated this week
• zaproxy / action-baseline
  A GitHub Action for running the ZAP Baseline scan
  ☆309Updated last month
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆251Updated this week
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆49Updated 2 months ago
• step-security / harden-runner
  Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
  ☆597Updated this week
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆67Updated last week
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆255Updated this week
• SonarSource / sonarqube-scan-action
  ☆195Updated 3 weeks ago
• Azure / container-scan
  A GitHub action to help you scan your docker image for vulnerabilities
  ☆218Updated last year
• hadolint / hadolint-action
  GitHub action for Hadolint, A Dockerfile linting tool
  ☆194Updated 6 months ago
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆131Updated last year
• actions / delete-package-versions
  ☆343Updated 3 weeks ago
• github / codeql-action
  Actions for running CodeQL analysis
  ☆1,134Updated this week
• hashicorp / vault-action
  A GitHub Action that simplifies using HashiCorp Vault™ secrets as build variables.
  ☆434Updated last month
• SonarSource / sonarcloud-github-action
  Integrate SonarCloud code analysis to GitHub Actions
  ☆590Updated 2 weeks ago
• slsa-framework / slsa-github-generator
  Language-agnostic SLSA provenance generation for Github Actions
  ☆413Updated last week
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆78Updated 5 months ago
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆170Updated this week
• gitleaks / gitleaks-action
  Protect your secrets using Gitleaks-Action
  ☆320Updated last month
• checkmarx-ts / checkmarx-cxflow-github-action
  Checkmarx CxFlow GitHub Action with SARIF output
  ☆52Updated 2 weeks ago
• github / ruleset-recipes
  Quickstart your use of Repository Rules with prebuilt rulesets ready to import.
  ☆133Updated 2 months ago
• BetaHuhn / repo-file-sync-action
  🔄 GitHub Action to keep files like Action workflows or entire directories in sync between multiple repositories.
  ☆283Updated last month
• docker / metadata-action
  GitHub Action to extract metadata (tags, labels) from Git reference and GitHub events for Docker
  ☆895Updated last week
• NickLiffen / ghas-enablement
  A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.
  ☆153Updated 3 months ago
• advanced-security / secret-scanning-custom-patterns
  Examples of Custom Secret Scanning Patterns
  ☆132Updated 2 months ago
• terraform-linters / setup-tflint
  A GitHub action that installs Terraform linter TFLint
  ☆142Updated 2 weeks ago
• anchore / sbom-action
  GitHub Action for creating software bill of materials using Syft.
  ☆162Updated this week