Alternatives and similar repositories for action-baseline

Users that are interested in action-baseline are comparing it to the libraries listed below

• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆350Updated last month
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆68Updated last month
• snyk / actions
  A set of GitHub actions for checking your projects for vulnerabilities.
  ☆607Updated 2 months ago
• checkmarx-ts / checkmarx-cxflow-github-action
  Checkmarx CxFlow GitHub Action with SARIF output
  ☆54Updated last month
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆134Updated 3 years ago
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆264Updated 2 weeks ago
• advanced-security / secret-scanning-custom-patterns
  Examples of Custom Secret Scanning Patterns for use with GitHub Secret Protection/Advanced Security
  ☆169Updated 3 weeks ago
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆91Updated 3 weeks ago
• devsecopsmaturitymodel / DevSecOps-MaturityModel
  ☆555Updated this week
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆103Updated last year
• NickLiffen / ghas-enablement
  A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.
  ☆158Updated last year
• jhutchings1 / Create-ActionsPRs
  This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.
  ☆47Updated 2 years ago
• dependency-check / Dependency-Check_Action
  Github action to run dependency check
  ☆93Updated 3 weeks ago
• advanced-security / GSSAR
  GitHub Secret Scanning Auto Remediator (GSSAR)
  ☆46Updated last week
• snyk / snyk-api-import
  ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …
  ☆42Updated last week
• Azure / container-scan
  A GitHub action to help you scan your docker image for vulnerabilities
  ☆222Updated 3 years ago
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆346Updated 2 weeks ago
• zkoppert / advanced-security-enforcer
  A GitHub action for organizations that enables advanced security code scanning on all new repos
  ☆42Updated 3 weeks ago
• Quobis / action-owasp-dependecy-track-check
  Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis
  ☆50Updated 2 months ago
• snyk-tech-services / snyk-scm-contributors-count
  Count distinct contributor of Snyk watched repos across several SCM
  ☆32Updated 4 months ago
• OWASP / www-project-secure-headers
  The OWASP Secure Headers Project
  ☆179Updated this week
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆153Updated 9 months ago
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆861Updated 2 years ago
• OWASP / www-project-security-knowledge-framework
  OWASP Foundation Web Respository
  ☆63Updated 2 years ago
• cider-security-research / top-10-cicd-security-risks
  ☆420Updated 2 years ago
• step-security / harden-runner
  Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…
  ☆935Updated 3 weeks ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆100Updated 2 weeks ago
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆78Updated 2 weeks ago
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆95Updated last month
• peter-murray / github-security-report-action
  ☆83Updated last year