synopsys-sig / detect-action
☆28Updated 2 months ago
Alternatives and similar repositories for detect-action:
Users that are interested in detect-action are comparing it to the libraries listed below
- Anchore container analysis and scan provided as a GitHub Action☆229Updated this week
- Synopsys Action consuming Synopsys scanning tools☆24Updated 2 months ago
- Plugin for retrieving Dependencytrack metrics in Backstage☆17Updated 5 months ago
- Terraform provider for managing Sonarqube configuration☆66Updated 2 weeks ago
- GitHub Action for creating software bill of materials using Syft.☆176Updated 3 weeks ago
- A utility to generate SPDX-compliant Bill of Materials manifests☆366Updated this week
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆66Updated this week
- Automatically refreshing GitHub App tokens using Octokit☆14Updated last year
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆335Updated 2 months ago
- github-actions-exporter for prometheus☆230Updated 4 months ago
- An OIDC client to retrieve a GitHub API scoped token from within an Actions workflow☆27Updated 10 months ago
- GitHub Advanced Security Policy as Code☆79Updated this week
- Publishes BOMs to Dependency-Track from GitHub Actions☆50Updated 4 months ago
- SBOM quality score - Quality metrics for your sboms☆193Updated this week
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆17Updated this week
- GitHub Advance Security Compliance Action☆132Updated 2 years ago
- Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive d…☆122Updated this week
- Frontend UI for Dependency-Track☆115Updated this week
- Docker Scout GitHub Action☆99Updated last week
- Search an SBOM for licenses and the packages they belong to☆72Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆225Updated 6 months ago
- Helm Charts for Dependency-Track☆31Updated this week
- A BOM repository server for distributing CycloneDX BOMs☆75Updated 11 months ago
- Official GitHub Action for OpenSSF Scorecard.☆280Updated this week
- GitHub Action for submitting Maven dependencies☆48Updated 4 months ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆153Updated 8 months ago
- A tool to create, transform and attest VEX metadata☆128Updated this week
- ☆79Updated 9 months ago
- Python implementation of OWASP CycloneDX☆74Updated this week
- Enrich SBOMs with data from third party services☆158Updated last week