synopsys-sig / detect-actionLinks
☆27Updated 6 months ago
Alternatives and similar repositories for detect-action
Users that are interested in detect-action are comparing it to the libraries listed below
Sorting:
- Anchore container analysis and scan provided as a GitHub Action☆247Updated this week
- GitHub Action for creating software bill of materials using Syft.☆191Updated 2 weeks ago
- Synopsys Action consuming Synopsys scanning tools☆25Updated 6 months ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆374Updated this week
- github-actions-exporter for prometheus☆241Updated 9 months ago
- Enrich SBOMs with data from third party services☆176Updated 2 months ago
- Docker Scout GitHub Action☆118Updated last month
- GitHub Advanced Security Policy as Code☆83Updated 2 weeks ago
- Language-agnostic SLSA provenance generation for Github Actions☆478Updated last month
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆19Updated this week
- A tool to create, transform and attest VEX metadata☆145Updated this week
- Plugin for retrieving Dependencytrack metrics in Backstage☆19Updated 9 months ago
- A utility to generate SPDX-compliant Bill of Materials manifests☆396Updated last week
- SBOM Assess - Evaluate SBOM quality and compliance☆216Updated this week
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆49Updated 3 weeks ago
- Search an SBOM for licenses and the packages they belong to☆93Updated 2 weeks ago
- CLOMonitor is a tool that periodically checks open source projects repositories to verify they meet certain project health best practices☆131Updated this week
- Generate docs for GitHub actions☆95Updated last week
- A GitHub Action to lint and test Helm charts☆265Updated 4 months ago
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆79Updated this week
- A BOM repository server for distributing CycloneDX BOMs☆77Updated last year
- Generate a score for your sbom to understand if it will actually be useful.☆230Updated 10 months ago
- This repository is meant to hold the setup for requesting actions to be used internally☆13Updated 9 months ago
- Backstage TechDocs Mermaid Addon☆55Updated 3 weeks ago
- Maintains a team with all your organization's members☆17Updated 2 years ago
- k8s runners for GitHub Actions in the enterprise, made for humans☆77Updated this week
- Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.☆133Updated last year
- An OIDC client to retrieve a GitHub API scoped token from within an Actions workflow☆30Updated last year
- Verify provenance from SLSA compliant builders☆269Updated this week
- Publishes BOMs to Dependency-Track from GitHub Actions☆54Updated 8 months ago