Alternatives and similar repositories for zizmor-action

Users that are interested in zizmor-action are comparing it to the libraries listed below

• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆139Updated last week
• wolfi-dev / wolfi-act
  Dynamic GitHub Actions from Wolfi packages
  ☆43Updated 2 months ago
• cue-lang / setup-cue
  ☆36Updated last year
• opentofu / terraform-provider-lua
  Experimental
  ☆34Updated 4 months ago
• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆207Updated this week
• octo-sts / action
  ☆43Updated 8 months ago
• jdolitsky / tq
  jq for .tf files (Terraform/OpenTofu)
  ☆28Updated last year
• caniszczyk / rugpulls.dev
  ☆34Updated last year
• reproducible-containers / repro-get
  [Soft-deprecated] Reproducible apt/dnf/apk/pacman, with content-addressing
  ☆110Updated last year
• chainguard-dev / darkfiles
  Darkfiles finds orphaned files in container images and makes them to bad deeds
  ☆42Updated 2 years ago
• sigstore / sget
  ☆23Updated 2 years ago
• jonjohnsonjr / dagdotdev
  oci and apk explorer
  ☆58Updated 2 weeks ago
• AkihiroSuda / apt-transport-oci
  OCI transport plugin for apt-get (i.e., apt-get over ghcr.io)
  ☆112Updated this week
• hashicorp / copywrite
  Automate copyright headers and license files at scale
  ☆96Updated 3 weeks ago
• 1Password / check-signed-commits-action
  GitHub Action to check PRs for signed commits
  ☆55Updated 11 months ago
• poseidon / terraform-provider-cue
  Terraform provider for evaluting CUE to render JSON
  ☆14Updated last week
• slsa-framework / slsa-verifier
  Verify provenance from SLSA compliant builders
  ☆273Updated 2 weeks ago
• cue-sh / cfn-cue
  ☆18Updated last year
• bottlerocket-os / hotdog
  Hotdog is a set of OCI hooks used to inject the Log4j Hot Patch into containers.
  ☆43Updated last year
• vbatts / is-archived
  check if your project depends on projects that are archived
  ☆10Updated 4 months ago
• tailscale / ToBeReviewedBot
  GitHub App to watch for PRs merged without a reviewer approving.
  ☆125Updated 3 months ago
• chainguard-dev / tlogistry
  Transparenty Immutable Container Image Tags
  ☆20Updated 2 years ago
• mheap / pin-github-action
  Pin your GitHub actions to a specific hash
  ☆121Updated 3 weeks ago
• imjasonh / setup-crane
  ☆23Updated 6 months ago
• slsa-framework / slsa-github-generator-go
  ☆57Updated 3 years ago
• hashicorp / ghaction-terraform-provider-release
  Reusable GitHub Action Workflows for releasing HashiCorp, partner, and community Terraform Providers
  ☆18Updated 3 weeks ago
• palfrey / terraform-provider-helloworld
  Demo Terraform Provider in Rust
  ☆45Updated 4 months ago
• timo-reymann / deterministic-zip
  Simple (almost drop-in) replacement for zip that produces deterministic files.
  ☆62Updated last month
• AkihiroSuda / gomodjail
  [Experimental] jail for Go modules
  ☆92Updated this week
• redhat-plumbers-in-action / differential-shellcheck
  🐚 GitHub Action for running ShellCheck differentially
  ☆60Updated 2 weeks ago