Alternatives and similar repositories for ToBeReviewedBot

Users that are interested in ToBeReviewedBot are comparing it to the libraries listed below

• cashapp / pivit
  ☆100Updated last week
• google / magic-github-proxy
  An access-limiting stateless GitHub API Proxy
  ☆149Updated 3 years ago
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆150Updated this week
• tailscale / security-policies
  Security policies for Tailscale
  ☆302Updated 3 weeks ago
• chainguard-dev / justtrustme
  ☆56Updated 2 weeks ago
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆251Updated 2 years ago
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated last year
• octo-sts / action
  ☆50Updated last week
• chainguard-dev / darkfiles
  Darkfiles finds orphaned files in container images and makes them to bad deeds
  ☆42Updated 2 years ago
• slsa-framework / slsa-github-generator-go
  ☆57Updated 3 years ago
• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆229Updated last week
• ConductorOne / baton
  Identity governance for any SaaS, infrastructure, or tool
  ☆88Updated 2 weeks ago
• digitalocean-labs / terraform-vault-github-oidc
  Terraform module to configure Vault for GitHub OIDC authentication from Action runners.
  ☆30Updated last year
• Snowflake-Labs / sansshell
  A non-interactive daemon for host management
  ☆114Updated this week
• aidansteele / jwtex
  A serverless JWT exchanger and OIDC IdP
  ☆32Updated last year
• jsiebens / tskeyservice
  A lightweight service exchanging OIDC tokens for Tailscale Auth Keys
  ☆31Updated 2 years ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆72Updated 2 years ago
• slsa-framework / github-actions-demo
  Proof-of-concept SLSA provenance generator for GitHub Actions
  ☆100Updated 2 years ago
• glassechidna / kms-host-key
  An easy way to give all your EC2 instances SSH host certificates
  ☆16Updated 2 years ago
• flipt-io / cup
  Git Contribution Automation
  ☆76Updated last year
• slsa-framework / slsa-verifier
  Verify provenance from SLSA compliant builders
  ☆285Updated 2 months ago
• sigstore / sget
  ☆23Updated 2 years ago
• chainguard-dev / crow-registry
  ☆24Updated 2 years ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆45Updated 2 years ago
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆237Updated this week
• sigstore / friends
  Sigstore user stories
  ☆30Updated 2 years ago
• tap8stry / orion
  Go beyond package manager discovery for SBOM
  ☆18Updated 3 years ago
• in-toto / demo
  Securing Alice's, Bob's and Carl's software supply chain using in-toto
  ☆95Updated 2 weeks ago
• darkbitio / gcp-iam-role-permissions
  Exports primitive and predefined GCP IAM Roles and their permissions
  ☆108Updated this week
• elastic / harp
  Secret management by contract toolchain
  ☆152Updated last week