zaproxy / action-baseline
A GitHub Action for running the ZAP Baseline scan
☆309Updated last month
Related projects: ⓘ
- A GitHub Action for running the ZAP Full scan☆268Updated 2 months ago
- A GitHub Action for running the ZAP API scan☆50Updated 2 months ago
- A set of GitHub actions for checking your projects for vulnerabilities☆505Updated last week
- This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to ident…☆238Updated this week
- A GitHub action to help you scan your docker image for vulnerabilities☆218Updated last year
- GitHub Advance Security Compliance Action☆131Updated last year
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆790Updated last year
- Anchore container analysis and scan provided as a GitHub Action☆203Updated this week
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆73Updated 5 months ago
- ☆478Updated this week
- GitHub Advanced Security Policy as Code☆67Updated last week
- Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities☆774Updated this week
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆153Updated 3 months ago
- Examples of integrating the Snyk CLI into a CI/CD system☆78Updated 5 months ago
- Network egress filtering and runtime security for GitHub-hosted and self-hosted runners☆597Updated this week
- Github action to run dependency check☆69Updated last month
- Examples of Custom Secret Scanning Patterns☆132Updated 2 months ago
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆94Updated 5 months ago
- Checkmarx CxFlow GitHub Action with SARIF output☆52Updated 2 weeks ago
- ☆394Updated last year
- Official GitHub Action for OpenSSF Scorecard.☆251Updated this week
- OWASP Foundation Web Respository☆79Updated 2 weeks ago
- threatspec - continuous threat modeling, through code☆327Updated 3 years ago
- Github Action for integrating Security Alerts with JIRA☆53Updated last week
- NextJS-based single-page application for completing and reviewing SAMM assessments☆67Updated last year
- Awesome Snyk community contributions, champions, integrations, blogs, tools and more 💜☆42Updated 2 years ago
- ☆32Updated 3 weeks ago
- Identify hardcoded secrets in static structured text☆480Updated 11 months ago
- Synchronize GitHub Code Scanning alerts to Jira issues☆81Updated last month
- Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec☆110Updated last year