Alternatives and similar repositories for action-baseline

Users that are interested in action-baseline are comparing it to the libraries listed below

• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆307Updated 2 weeks ago
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆58Updated 2 weeks ago
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆132Updated 2 years ago
• NickLiffen / ghas-enablement
  A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.
  ☆154Updated 11 months ago
• snyk / actions
  A set of GitHub actions for checking your projects for vulnerabilities
  ☆558Updated 8 months ago
• advanced-security / secret-scanning-custom-patterns
  Examples of Custom Secret Scanning Patterns
  ☆161Updated 3 months ago
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆82Updated last week
• peter-murray / github-security-report-action
  ☆80Updated last year
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆87Updated 2 months ago
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆244Updated last week
• dependency-check / Dependency-Check_Action
  Github action to run dependency check
  ☆78Updated 10 months ago
• jhutchings1 / Create-ActionsPRs
  This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.
  ☆46Updated 2 years ago
• OWASP / www-project-security-knowledge-framework
  OWASP Foundation Web Respository
  ☆63Updated last year
• Azure / container-scan
  A GitHub action to help you scan your docker image for vulnerabilities
  ☆221Updated 2 years ago
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆73Updated last year
• aquasecurity / trivy-action
  Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
  ☆966Updated 2 weeks ago
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆307Updated this week
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆72Updated 2 years ago
• checkmarx-ts / checkmarx-cxflow-github-action
  Checkmarx CxFlow GitHub Action with SARIF output
  ☆54Updated 3 weeks ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆147Updated 2 months ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆108Updated last year
• kllund / sample-pipeline-files
  This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…
  ☆28Updated 2 years ago
• advanced-security / GSSAR
  GitHub Secret Scanning Auto Remediator (GSSAR)
  ☆44Updated last week
• advanced-security / probot-security-alerts
  Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts
  ☆23Updated 2 months ago
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆91Updated 6 months ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year
• checkmarx-ts / checkmarx-github-action
  Checkmarx Scan Github Action
  ☆29Updated 10 months ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆180Updated 6 years ago
• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆128Updated last week
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆357Updated 4 years ago