step-security / harden-runner
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
☆622Updated this week
Related projects ⓘ
Alternatives and complementary repositories for harden-runner
- Orchestrate GitHub Actions Security☆256Updated 2 months ago
- A security layer for Git repositories☆465Updated this week
- Official GitHub Action for OpenSSF Scorecard.☆267Updated this week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆775Updated last week
- GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…☆185Updated this week
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆443Updated last month
- CI/CD Security Analyzer☆626Updated last month
- Open source compliance tool for development platforms.☆286Updated last year
- GitHub token permissions Monitor and Advisor actions☆257Updated this week
- Language-agnostic SLSA provenance generation for Github Actions☆433Updated this week
- GitHub Advanced Security Policy as Code☆74Updated this week
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆117Updated this week
- Evaluate source control (GitHub) security posture☆249Updated last year
- Examples of Custom Secret Scanning Patterns☆145Updated 4 months ago
- boostsecurityio/poutine☆232Updated this week
- A tool for finding security issues in GitHub Actions setups.☆371Updated this week
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆349Updated this week
- Generate SBOMs with gh CLI☆168Updated 2 months ago
- GitHub Advance Security Compliance Action☆132Updated last year
- Keyless Git signing using Sigstore☆947Updated this week
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆167Updated last week
- Verify provenance from SLSA compliant builders☆232Updated 3 weeks ago
- Manage multiple repository updates all at once.☆138Updated 11 months ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆415Updated this week
- Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities☆834Updated this week
- Publish from GitHub Actions using multi-factor authentication☆276Updated last month
- A tool for securing CI/CD workflows with version pinning.☆773Updated 3 months ago
- Enrich SBOMs with data from third party services☆120Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆516Updated this week