Alternatives and similar repositories for actions:

Users that are interested in actions are comparing it to the libraries listed below

• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆303Updated 4 months ago
• zaproxy / action-baseline
  A GitHub Action for running the ZAP Baseline scan
  ☆326Updated 4 months ago
• actions / dependency-review-action
  A GitHub Action for detecting vulnerable dependencies and invalid licenses in your PRs
  ☆673Updated this week
• aquasecurity / trivy-action
  Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
  ☆922Updated this week
• SonarSource / sonarqube-scan-action
  ☆251Updated 2 weeks ago
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆236Updated this week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆292Updated this week
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆55Updated 4 months ago
• docker / scout-action
  Docker Scout GitHub Action
  ☆109Updated 3 weeks ago
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆199Updated this week
• step-security / harden-runner
  Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…
  ☆790Updated this week
• SonarSource / sonarcloud-github-action
  Deprecated. Use https://github.com/SonarSource/sonarqube-scan-action instead.
  ☆604Updated last month
• github / cleanowners
  A GitHub Action to suggest removal of non-organization members from CODEOWNERS files
  ☆131Updated last week
• github / codeql-action
  Actions for running CodeQL analysis
  ☆1,240Updated this week
• hadolint / hadolint-action
  GitHub action for Hadolint, A Dockerfile linting tool
  ☆216Updated last year
• github / safe-settings
  ☆691Updated this week
• renovatebot / github-action
  ☆338Updated this week
• hashicorp / vault-action
  A GitHub Action that simplifies using HashiCorp Vault™ secrets as build variables.
  ☆463Updated last month
• peter-murray / workflow-application-token-action
  GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.
  ☆191Updated 3 weeks ago
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆282Updated 2 weeks ago
• Azure / container-scan
  A GitHub action to help you scan your docker image for vulnerabilities
  ☆221Updated 2 years ago
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆82Updated this week
• gitleaks / gitleaks-action
  Protect your secrets using Gitleaks-Action
  ☆382Updated 6 months ago
• BetaHuhn / repo-file-sync-action
  🔄 GitHub Action to keep files like Action workflows or entire directories in sync between multiple repositories.
  ☆308Updated 8 months ago
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆87Updated 4 months ago
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆133Updated 2 years ago
• actions / reusable-workflows
  Reusable workflows for developing actions
  ☆64Updated 2 months ago
• peter-evans / slash-command-dispatch
  A GitHub action that facilitates "ChatOps" by creating repository dispatch events for slash commands
  ☆620Updated this week
• GitHubSecurityLab / actions-permissions
  GitHub token permissions Monitor and Advisor actions
  ☆281Updated this week
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆96Updated 11 months ago