Alternatives and similar repositories for actions:

Users that are interested in actions are comparing it to the libraries listed below

• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆297Updated 4 months ago
• zaproxy / action-baseline
  A GitHub Action for running the ZAP Baseline scan
  ☆321Updated 4 months ago
• aquasecurity / trivy-action
  Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
  ☆902Updated last week
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆233Updated this week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆288Updated this week
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆54Updated 4 months ago
• actions / dependency-review-action
  A GitHub Action for detecting vulnerable dependencies and invalid licenses in your PRs
  ☆661Updated last week
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆87Updated 3 months ago
• github / codeql-action
  Actions for running CodeQL analysis
  ☆1,228Updated this week
• SonarSource / sonarcloud-github-action
  Deprecated. Use https://github.com/SonarSource/sonarqube-scan-action instead.
  ☆606Updated last week
• SonarSource / sonarqube-scan-action
  ☆243Updated this week
• checkmarx-ts / checkmarx-cxflow-github-action
  Checkmarx CxFlow GitHub Action with SARIF output
  ☆53Updated 2 months ago
• hadolint / hadolint-action
  GitHub action for Hadolint, A Dockerfile linting tool
  ☆212Updated last year
• snyk-labs / snyk-filter
  Snyk filtering for SNYK CLI
  ☆15Updated 4 months ago
• gitleaks / gitleaks-action
  Protect your secrets using Gitleaks-Action
  ☆374Updated 5 months ago
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆132Updated 2 years ago
• slsa-framework / slsa-github-generator
  Language-agnostic SLSA provenance generation for Github Actions
  ☆453Updated this week
• Azure / container-scan
  A GitHub action to help you scan your docker image for vulnerabilities
  ☆221Updated 2 years ago
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆81Updated 2 weeks ago
• NickLiffen / ghas-enablement
  A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.
  ☆153Updated 9 months ago
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆196Updated last week
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆278Updated last month
• anchore / sbom-action
  GitHub Action for creating software bill of materials using Syft.
  ☆176Updated this week
• peter-murray / workflow-application-token-action
  GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.
  ☆189Updated last month
• OWASP / www-project-secure-headers
  The OWASP Secure Headers Project
  ☆153Updated last week
• checkmarx-ts / checkmarx-github-action
  Checkmarx Scan Github Action
  ☆28Updated 8 months ago
• github / cleanowners
  A GitHub Action to suggest removal of non-organization members from CODEOWNERS files
  ☆127Updated last week
• snyk / snyk-api-import
  ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …
  ☆38Updated last month
• crazy-max / ghaction-import-gpg
  GitHub Action to import a GPG key
  ☆334Updated 3 weeks ago
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆96Updated 11 months ago