Ecosyste.ms: Packages
An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.
github actions "security-tools" keyword
Top 3.9% on github actions
15 versions - Latest release: 8 months ago - 50 dependent repositories - 50 stars on GitHub
crazy-max/ghaction-container-scan v3.0.0 💰
Check for vulnerabilities in your container image15 versions - Latest release: 8 months ago - 50 dependent repositories - 50 stars on GitHub
Top 1.9% on github actions
23 versions - Latest release: about 1 month ago - 173 dependent repositories - 316 stars on GitHub
GitGuardian/ggshield-action v1.26.0
Scan commits for secrets and other issues.23 versions - Latest release: about 1 month ago - 173 dependent repositories - 316 stars on GitHub
Top 7.8% on github actions
18 versions - Latest release: 9 months ago - 17 dependent repositories - 7 stars on GitHub
SAP/fosstars-rating-core-action v1.14.0
The action calculates one of the Fosstars ratings. It outputs a report in Markdown format and an ...18 versions - Latest release: 9 months ago - 17 dependent repositories - 7 stars on GitHub
Top 0.7% on github actions
208 versions - Latest release: 5 days ago - 519 dependent repositories - 13,224 stars on GitHub
trufflesecurity/trufflehog v3.74.0
Scan Github Actions with TruffleHog.208 versions - Latest release: 5 days ago - 519 dependent repositories - 13,224 stars on GitHub
Top 9.1% on github actions
6 versions - Latest release: over 1 year ago - 9 dependent repositories - 7 stars on GitHub
nowsecure/nowsecure-sbom-action v2.0.0
Generate a Mobile SBOM for an application and submit to the Dependency submission API6 versions - Latest release: over 1 year ago - 9 dependent repositories - 7 stars on GitHub
Top 1.1% on github actions
36 versions - Latest release: 2 months ago - 211 dependent repositories - 243 stars on GitHub
gitleaks/gitleaks-action v2.3.4 removed
run gitleaks on push and pull-request events36 versions - Latest release: 2 months ago - 211 dependent repositories - 243 stars on GitHub
Top 3.8% on github actions
24 versions - Latest release: 5 months ago - 39 dependent repositories - 43 stars on GitHub
philips-labs/slsa-provenance-action v0.9.0
An action to generate SLSA build provenance for an artifact24 versions - Latest release: 5 months ago - 39 dependent repositories - 43 stars on GitHub
Top 0.3% on github actions
35 versions - Latest release: 3 months ago - 764 dependent repositories - 7,313 stars on GitHub
securego/gosec v2.19.0 💰
Runs the gosec security checker35 versions - Latest release: 3 months ago - 764 dependent repositories - 7,313 stars on GitHub
Top 8.9% on github actions
13 versions - Latest release: 8 months ago - 23 dependent repositories - 6 stars on GitHub
ossillate-inc/packj-github-action v0.0.12-beta
Use Packj to avoid malicious and other "risky" open-source software dependencies13 versions - Latest release: 8 months ago - 23 dependent repositories - 6 stars on GitHub
Top 5.6% on github actions
15 versions - Latest release: 9 months ago - 85 dependent repositories - 15 stars on GitHub
Templum/govulncheck-action v1.0.0
Performs vulnerability scan using govulncheck and afterwards uploads it as Sarif Report to Github15 versions - Latest release: 9 months ago - 85 dependent repositories - 15 stars on GitHub
Top 4.5% on github actions
1 version - Latest release: over 1 year ago - 5 dependent repositories - 150 stars on GitHub
PortSwigger/dastardly-github-action v1.0.0
Runs a Dastardly scan against a target site1 version - Latest release: over 1 year ago - 5 dependent repositories - 150 stars on GitHub
mikaelvesavuori/license-compliance-action v1.0.3 💰
Uses license-compliance to check if open source packages you are using for production builds are ...9 versions - Latest release: 2 months ago - 2 dependent repositories - 6 stars on GitHub
SecureStackCo/actions-code v0.1.1
Scan your source code in real-time for vulnerable libraries & frameworks you are using. Supports ...2 versions - Latest release: about 2 years ago - 1 dependent repositories - 18 stars on GitHub
trendmicro/cloudone-container-security-github-action 1.0.10
Scan container images with Vision One Container Security11 versions - Latest release: 7 months ago - 4 stars on GitHub
Top 9.5% on github actions
1 version - Latest release: over 4 years ago - 1 dependent repositories - 13 stars on GitHub
y-mehta/vulnalerts v1
Customized daily Vulnerabilty Alerts straight to your Slack Inbox for Free.1 version - Latest release: over 4 years ago - 1 dependent repositories - 13 stars on GitHub
HCL-TECH-SOFTWARE/appscan-dast-action v1.0.5
Scan for security issues in web applications6 versions - Latest release: about 1 year ago - 4 dependent repositories - 1 stars on GitHub
SecureStackCo/actions-log4j v0.1.4
Scans your application for the presence of serious vulnerabilities in Log4j5 versions - Latest release: about 2 years ago - 1 dependent repositories - 14 stars on GitHub
koslib/ga-dtfy v1.0
Easily scan your assets with Detectify before shipping to production.1 version - Latest release: almost 3 years ago - 1 dependent repositories - 2 stars on GitHub
operous/test-ssh-action 0.1.0
SSH server vulnerability and security scanner with Operous5 versions - Latest release: over 2 years ago - 9 stars on GitHub
edersonbrilhante/vilicus-github-action v0.0.1
Scans container images for vulnerabilities using Vilicus2 versions - Latest release: about 3 years ago - 1 dependent repositories - 5 stars on GitHub
Top 6.7% on github actions
3 versions - Latest release: 5 months ago - 21 dependent repositories - 17 stars on GitHub
HCL-TECH-SOFTWARE/appscan-codesweep-action v2.1
Scan for security issues in code3 versions - Latest release: 5 months ago - 21 dependent repositories - 17 stars on GitHub
konstruktoid/action-pylint v0.5.0 💰
Python linting and format checking using black ruff20 versions - Latest release: 21 days ago - 4 dependent repositories - 9 stars on GitHub
grolston/cfn-security v2.0.0 removed
CloudFormation Static Code Analysis Tool Suite5 versions - Latest release: over 2 years ago - 10 dependent repositories - 6 stars on GitHub
simonkowallik/irulescan-action v1
Use irulescan to check iRules for security issues.1 version - Latest release: over 1 year ago - 1 dependent repositories - 2 stars on GitHub
fabasoad/setup-graudit-action v0.2.3 💰
This action installs graudit CLI tool.8 versions - Latest release: 15 days ago - 0 stars on GitHub
insidersec/insider-action v0.2.0
Official insider action7 versions - Latest release: almost 4 years ago - 2 dependent repositories - 9 stars on GitHub
Top 9.9% on github actions
5 versions - Latest release: about 2 years ago - 13 dependent repositories - 22 stars on GitHub
SecureStackCo/actions-secrets v0.1.3
Scan your source code for sensitive data like API keys, passwords, server host strings, config an...5 versions - Latest release: about 2 years ago - 13 dependent repositories - 22 stars on GitHub
martins-vds/export-secrets-action v1
Export secrets to CSV file.1 version - Latest release: 11 months ago - 1 dependent repositories - 0 stars on GitHub
Top 6.7% on github actions
3 versions - Latest release: over 3 years ago - 76 dependent repositories - 8 stars on GitHub
RIGS-IT/xanitizer-action v1.0.1
GitHub action to download and install Xanitizer, and to run a Xanitizer security analysis in a Gi...3 versions - Latest release: over 3 years ago - 76 dependent repositories - 8 stars on GitHub
godaddy/tartufo-action 4.1.0
Runs scan-local-repo with default options9 versions - Latest release: about 1 year ago - 4 dependent repositories - 7 stars on GitHub
Checkmarx/dustilock v1.2.0
DustiLock is a tool to find which of your dependencies is susceptible to Dependency Confusion attack4 versions - Latest release: over 2 years ago - 28 stars on GitHub
Top 9.9% on github actions
4 versions - Latest release: 7 months ago - 10 dependent repositories - 27 stars on GitHub
Nekmo/pip-rating v0.2.2
Run pip-rating on the project to get the requirements rating based on criteria like freshness, po...4 versions - Latest release: 7 months ago - 10 dependent repositories - 27 stars on GitHub
hahwul/authz0 v1.1.2 💰
Unauthorized access can be identified based on URLs and Roles & Credentials.5 versions - Latest release: about 2 years ago - 335 stars on GitHub
hahwul/gee v1.1.2 💰
Gee is tool of stdin to each files and stdout. It is similar to the tee command9 versions - Latest release: about 2 years ago - 77 stars on GitHub
HCL-TECH-SOFTWARE/appscan-sast-action v1.0.4
Scan for security issues in code5 versions - Latest release: 26 days ago - 7 dependent repositories - 3 stars on GitHub
Guardsquare/appsweep-action v1.5
Scan your app using AppSweep by Guardsquare, signup at https://guardsquare.com/appsweep-mobile-ap...6 versions - Latest release: 6 months ago - 1 dependent repositories - 16 stars on GitHub
silverhack/monkey365 v0.91.2-beta
Install and run PSScriptAnalyzer5 versions - Latest release: 4 months ago - 630 stars on GitHub
felipecosta09/Deep-Security-Smart-Check-Scan-Action v1.0.3
Scan container images with Deep Security Smart Check18 versions - Latest release: about 1 year ago - 6 dependent repositories - 5 stars on GitHub
UlisesGascon/openssf-scorecard-monitor v1.0.1
Monitor OpenSSF Scorecard Evolution over time9 versions - Latest release: about 1 year ago - 3 dependent repositories - 19 stars on GitHub
kfear1337/CodeQL v1.0.3 removed
GitHub Actions workflow for CodeQL security analysis.3 versions - Latest release: 8 months ago - 1 stars on GitHub
Related Keywords
security
27
github-actions
19
devsecops
10
security-automation
9
security-scanner
8
vulnerability-detection
6
actions
5
action
5
secrets
5
golang
4
security-audit
4
static-analysis
4
scanning
4
sast
4
github
3
ci
3
appscan
3
cicd
3
vulnerability-scanners
3
vulnerability-scanner
3
security-vulnerability
3
github-action
3
hacktoberfest
3
trivy
2
nodejs
2
deployment
2
java
2
vulnerabilities
2
vulnerability-assessment
2
sarif-report
2
software-composition-analysis
2
analysis
2
secrets-scan
2
secrets-detection
2
security-testing
2
rating
2
vulnerability
2
dynamic-analysis
2
dast
2
kotlin
1
javascript
1
vilicus
1
owasp
1
static-analyzer
1
swift
1
secrets-discovery-service
1
secrets-scanner
1
secrets-management
1
xanitizer
1
entropy
1
codesweep
1
black
1
checks-python
1
dlint
1
flake8
1
github-actions-python
1
lint
1
python3
1
python3-safety
1
ruff
1
safety
1
cloudformation
1
f5
1
f5-bigip
1
f5networks
1
irules
1
actios
1
android
1
csharp
1
dotnet
1
insider
1
exchangeonline
1
microsoft365
1
microsoft365-compliance
1
office365
1
powershell-module
1
purview
1
cloud-one
1
cloud-one-container-security
1
containers
1
docker-image-scan
1
image-scanning
1
smartcheck
1
trendmicro
1
open-source-management
1
openssf-scorecard
1
codeql
1
codeql-queries
1
devops-tools
1
pentesting-tools
1
research-tool
1
git
1
dependency-confusion
1
dependencies
1
pip
1
python
1
requirements
1
auth
1
authorization
1
authz
1