Alternatives and similar repositories for action-baseline

Users that are interested in action-baseline are comparing it to the libraries listed below

• zaproxy / action-full-scan
  A GitHub Action for running the ZAP Full scan
  ☆330Updated 3 months ago
• snyk / actions
  A set of GitHub actions for checking your projects for vulnerabilities.
  ☆588Updated this week
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆61Updated 3 months ago
• checkmarx-ts / checkmarx-cxflow-github-action
  Checkmarx CxFlow GitHub Action with SARIF output
  ☆54Updated 4 months ago
• advanced-security / secret-scanning-custom-patterns
  Examples of Custom Secret Scanning Patterns
  ☆164Updated 2 weeks ago
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆134Updated 2 years ago
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆255Updated this week
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆89Updated 2 weeks ago
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆96Updated 9 months ago
• Azure / container-scan
  A GitHub action to help you scan your docker image for vulnerabilities
  ☆222Updated 2 years ago
• DependencyTrack / gh-upload-sbom
  Publishes BOMs to Dependency-Track from GitHub Actions
  ☆55Updated 11 months ago
• advanced-security / GSSAR
  GitHub Secret Scanning Auto Remediator (GSSAR)
  ☆46Updated 2 months ago
• dependency-check / Dependency-Check_Action
  Github action to run dependency check
  ☆83Updated 3 months ago
• snyk / snyk-api-import
  ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …
  ☆42Updated 3 weeks ago
• NickLiffen / ghas-enablement
  A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.
  ☆156Updated last year
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆853Updated 2 years ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year
• jhutchings1 / Create-ActionsPRs
  This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.
  ☆47Updated 2 years ago
• devsecopsmaturitymodel / DevSecOps-MaturityModel
  ☆537Updated last week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆334Updated last week
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆92Updated this week
• gitleaks / gitleaks-action
  Protect your secrets using Gitleaks-Action
  ☆446Updated 2 months ago
• OWASP / www-project-application-security-verification-standard
  OWASP Foundation Web Respository
  ☆80Updated 3 months ago
• zkoppert / advanced-security-enforcer
  A GitHub action for organizations that enables advanced security code scanning on all new repos
  ☆41Updated 2 weeks ago
• Quobis / action-owasp-dependecy-track-check
  Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis
  ☆45Updated last year
• AppSecure-nrw / security-belts
  ☆110Updated last year
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆149Updated 5 months ago
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆76Updated 2 years ago
• advanced-security / secret-scanning-review-action
  Action to detect if a secret is initially detected in a pull request
  ☆17Updated 2 weeks ago
• stackhawk / hawkscan-action
  🦅 Run a StackHawk scan in GitHub Actions
  ☆26Updated 2 months ago