Alternatives and similar repositories for actions

Users that are interested in actions are comparing it to the libraries listed below

• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆306Updated 2 weeks ago
• aquasecurity / trivy-action
  Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
  ☆966Updated 2 weeks ago
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆244Updated this week
• zaproxy / action-baseline
  A GitHub Action for running the ZAP Baseline scan
  ☆326Updated 2 weeks ago
• actions / dependency-review-action
  A GitHub Action for detecting vulnerable dependencies and invalid licenses in your PRs
  ☆687Updated last week
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆58Updated 2 weeks ago
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆307Updated this week
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆82Updated last week
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆91Updated 6 months ago
• docker / scout-action
  Docker Scout GitHub Action
  ☆117Updated last week
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆132Updated 2 years ago
• hashicorp / vault-action
  A GitHub Action that simplifies using HashiCorp Vault™ secrets as build variables.
  ☆465Updated 2 weeks ago
• step-security / harden-runner
  Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…
  ☆830Updated this week
• checkmarx-ts / checkmarx-cxflow-github-action
  Checkmarx CxFlow GitHub Action with SARIF output
  ☆54Updated 3 weeks ago
• tj-actions / verify-changed-files
  Github action to verify file changes that occur during the workflow execution.
  ☆194Updated 2 months ago
• SonarSource / sonarqube-scan-action
  ☆265Updated last week
• SonarSource / sonarcloud-github-action
  Deprecated. Use https://github.com/SonarSource/sonarqube-scan-action instead.
  ☆603Updated 2 weeks ago
• snyk / snyk-api-import
  ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …
  ☆42Updated last week
• gitleaks / gitleaks-action
  Protect your secrets using Gitleaks-Action
  ☆392Updated last month
• github / safe-settings
  ☆710Updated this week
• github / stale-repos
  Find stale repositories in a GitHub organization.
  ☆182Updated this week
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆201Updated this week
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆87Updated 2 months ago
• peter-murray / workflow-application-token-action
  GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.
  ☆192Updated 2 months ago
• checkmarx-ts / checkmarx-github-action
  Checkmarx Scan Github Action
  ☆29Updated 10 months ago
• integrations / terraform-provider-github
  Terraform GitHub provider
  ☆989Updated last month
• hadolint / hadolint-action
  GitHub action for Hadolint, A Dockerfile linting tool
  ☆222Updated last year
• github / codeql-action
  Actions for running CodeQL analysis
  ☆1,264Updated this week
• zkoppert / advanced-security-enforcer
  A GitHub action for organizations that enables advanced security code scanning on all new repos
  ☆39Updated last month
• anchore / sbom-action
  GitHub Action for creating software bill of materials using Syft.
  ☆187Updated last week