GitHub Advanced Security

GitHub Advanced Security's repositories

secret-scanning-custom-patterns

Examples of Custom Secret Scanning Patterns

Language:HTMLMIT113 3 20

advanced-security-material

Language:Shell60 5 3

policy-as-code

GitHub Advanced Security Policy as Code

Language:PythonMIT54 4 29

maven-dependency-submission-action

GitHub Action for submitting Maven dependencies

Language:TypeScriptMIT43 5 40

codeql-extractor-iac

CodeQL Extractor, Library, and Queries for Infrastructure as Code

Language:CodeQLMIT29014

ghas-reviewer-app

GitHub Advanced Security Pull Request Security Team required review GitHub App

Language:PythonMIT28 3 9

filter-sarif

GitHub Action for filtering Code Scanning alerts by path and id

Language:JavaApache-2.02100

awesome-codeql

A curated list of awesome CodeQL resources.

MIT11 20

SARIF-viewer

JetBrains IDE plugin for displaying SARIF from GHAS or from a local file

Language:KotlinMIT800

secret-scanning-review-action

Action to detect if a secret is initially detected in a PR commit

Language:PowerShellMIT7 2 2

codeql-development-toolkit

The CodeQL Development toolkit is a tool for making common CodeQL development workflows easier.

Language:C#MIT600

codeql-summarize

CodeQL Summary Generator

Language:PythonMIT6 2 17

demo-java

GitHub Advanced Security scanning tutorial repository for Java

Language:JavaMIT6 40

ghe-cross-instance-committers

A script which will return the total number of unique de-deuped active committers across multiple GHES instances

Language:TypeScriptMIT6 1 2

cocoapods-dependency-submission-action

CocoaPods Lockfile Dependency Submission Action

Language:PythonMIT5 2 3

teams-secret-scanning-notifier-azure-function

Microsoft Teams notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function

Language:TypeScriptMIT5 10

cbom-action

Create a Crypto Bill of Materials using CodeQL

Language:PythonMIT4 1 1

dependabot-kev-action

Action to detect if any open Dependabot alerts are in the CISA Known Exploited Vulnerabilities (KEV) Catalog of CVEs and fail the workflow.

Language:PowerShellMIT400

sarif-toolkit

All things SARIF, as an Action

Language:PythonMIT4 1 4

brew-dependency-submission-action

Brew Lockfile Dependency Submission Action

Language:PythonMIT3 2 1

gh-add-files

A GitHub CLI Extension that allows you to add files to your GitHub repositories directly from the command line

Language:GoMIT300

adjust-cvss

Language:JavaApache-2.02 10

awesome-secret-scanning

A curated list of awesome GitHub Advanced Security secret scanning resources.

MIT200

secret-scanning-tools

Testing Suite for GitHub Secret Scanning Custom Patterns

Language:PythonMIT1 2 1

slack-secret-scanning-notifier-azure-function

Slack notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function

Language:TypeScriptMIT1 10

python-lint-code-scanning-action

Lint and type check Python with your choice of popular linters, and upload results to GitHub Code Scanning

Language:PythonMIT000

.github

GitHub Advanced Security's Org README

000

awesome-dependabot

A curated list of awesome Dependabot (and related software supply chain) resources.

MIT020

reusable-workflows

Advanced Security Reusable GitHub Actions Workflows

MIT000

secret-scanning-notifications

A GitHub Action that sends email notifications to security manager team for any new or resolved secret scanning alerts based on a set frequency

Language:TypeScriptMIT010