Alternatives and similar repositories for actions

Users that are interested in actions are comparing it to the libraries listed below

• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆345Updated 2 weeks ago
• zaproxy / action-baseline
  A GitHub Action for running the ZAP Baseline scan
  ☆344Updated 2 weeks ago
• aquasecurity / trivy-action
  Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
  ☆1,122Updated 3 months ago
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆261Updated this week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆339Updated this week
• checkmarx-ts / checkmarx-cxflow-github-action
  Checkmarx CxFlow GitHub Action with SARIF output
  ☆54Updated 3 weeks ago
• actions / dependency-review-action
  A GitHub Action for detecting vulnerable dependencies and invalid licenses in your PRs
  ☆755Updated last week
• gitleaks / gitleaks-action
  Protect your secrets using Gitleaks-Action
  ☆493Updated 4 months ago
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆66Updated 2 weeks ago
• SonarSource / sonarqube-scan-action
  ☆336Updated this week
• SonarSource / sonarcloud-github-action
  Deprecated. Use https://github.com/SonarSource/sonarqube-scan-action instead.
  ☆611Updated 3 months ago
• docker / scout-action
  Docker Scout GitHub Action
  ☆133Updated 4 months ago
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆301Updated last week
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆91Updated this week
• hadolint / hadolint-action
  GitHub action for Hadolint, A Dockerfile linting tool
  ☆243Updated 2 months ago
• step-security / harden-runner
  Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…
  ☆923Updated this week
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆217Updated this week
• actions / reusable-workflows
  Reusable workflows for developing actions
  ☆74Updated last week
• BetaHuhn / repo-file-sync-action
  🔄 GitHub Action to keep files like Action workflows or entire directories in sync between multiple repositories.
  ☆346Updated last year
• slsa-framework / slsa-github-generator
  Language-agnostic SLSA provenance generation for Github Actions
  ☆524Updated last month
• anchore / sbom-action
  GitHub Action for creating software bill of materials using Syft.
  ☆210Updated last week
• github / actions-oidc-gateway-example
  Example of using Actions OIDC token to proxy into a private network
  ☆102Updated 8 months ago
• npalm / action-docs
  Generate docs for GitHub actions
  ☆100Updated 3 weeks ago
• snyk / snyk-api-import
  ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …
  ☆43Updated last week
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆95Updated 2 weeks ago
• hashicorp / vault-action
  A GitHub Action that simplifies using HashiCorp Vault™ secrets as build variables.
  ☆492Updated 4 months ago
• Azure / container-scan
  A GitHub action to help you scan your docker image for vulnerabilities
  ☆222Updated 2 years ago
• NickLiffen / ghas-enablement
  A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.
  ☆158Updated last year
• github / safe-settings
  ☆806Updated this week
• SvanBoxel / organization-workflows
  Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.
  ☆135Updated last year