synopsys-sig / detect-action
☆28Updated last month
Related projects: ⓘ
- Anchore container analysis and scan provided as a GitHub Action☆203Updated this week
- GitHub Action for creating software bill of materials using Syft.☆162Updated this week
- Synopsys Action consuming Synopsys scanning tools☆23Updated last week
- Docker Scout GitHub Action☆82Updated 2 weeks ago
- SBOM quality score - Quality metrics for your sboms☆161Updated this week
- GitHub Advance Security Compliance Action☆131Updated last year
- GitHub Advanced Security Policy as Code☆67Updated last week
- An OIDC client to retrieve a GitHub API scoped token from within an Actions workflow☆23Updated 5 months ago
- github-actions-exporter for prometheus☆211Updated last month
- Plugin for retrieving Dependencytrack metrics in Backstage☆16Updated 3 weeks ago
- A utility to generate SPDX-compliant Bill of Materials manifests☆330Updated last week
- Terraform provider for managing Sonarqube configuration☆62Updated last month
- This repository is meant to hold the setup for requesting actions to be used internally☆13Updated 2 weeks ago
- Plugin for Docker CLI to support SBOM creation using Syft☆150Updated 2 weeks ago
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆14Updated this week
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆297Updated this week
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆42Updated last month
- Official GitHub Action for OpenSSF Scorecard.☆251Updated this week
- Automatically refreshing GitHub App tokens using Octokit☆13Updated last year
- Generate a score for your sbom to understand if it will actually be useful.☆219Updated last month
- Language-agnostic SLSA provenance generation for Github Actions☆413Updated last week
- Orchestrate GitHub Actions Security☆255Updated this week
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆59Updated this week
- A GitHub Action to lint and test Helm charts☆245Updated 3 weeks ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆153Updated 3 months ago
- GitHub Office Hours - Adopting GitHub Actions at scale in the Enterprise☆53Updated last year
- Maintains a team with all your organization's members☆17Updated last year
- A set of GitHub actions for checking your projects for vulnerabilities☆505Updated 2 weeks ago
- GitHub action for Hadolint, A Dockerfile linting tool☆194Updated 6 months ago
- Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis☆34Updated this week