Skip to content
Menu

Menu

Security

Find, fix, and prevent security vulnerabilities before they can be exploited.

164 results filtered by Security ×

WhiteSource Bolt

Detect open source vulnerabilities in real time with suggested fixes for quick remediation

Sonatype DepShield

Monitor your open source components for security vulnerabilities - goodbye muda, hello kaizen

Snyk

Find, fix (and prevent!) known vulnerabilities in your code

Renovate

Keep dependencies up-to-date with automated Pull Requests

BackHub

Reliable GitHub repository backup, set up in minutes

zap

OWASP ZAP Full Scan

By zaproxy

Scans the web application with the OWASP ZAP Full Scan

sonarsource

SonarCloud Scan

By SonarSource

Scan your code with SonarCloud to detect bugs, vulnerabilities and code smells in more than 25 programming languages

snyk

Snyk

By snyk

Check your Node application for vulnerabilties using Snyk

zap

OWASP ZAP Baseline Scan

By zaproxy

Scans the web application with the OWASP ZAP Baseline Scan

GuardRails

GuardRails provides continuous security feedback for modern development teams

google

Secrets Sync Action

By google

Copies secrets from the action's environment to many other repos

whitesource

GP Security Scan

By whitesource

Scan packages and Docker images uploaded to GitHub Packages

LGTM

Find and prevent zero-days and other critical bugs, with customizable alerts and automated code review

Dependabot Preview

Automated dependency updates for Ruby, JavaScript, Python, Go, PHP, Elixir, Rust, Java and .NET

blackducksoftware

Synopsys Detect

By blackducksoftware

Add SAST and SCA scanning to your GitHub repositories with Synopsys Coverity on Polaris and Black Duck

shield

Nancy for GitHub Actions

By sonatype-nexus-community

Run Sonatype Nancy as part of your GitHub Actions workflow

shield

gitleaks-action

By eshork

checks your source for embedded key leaks, using gitleaks

shield

RIPS Security Scan

By rips

Performs a security scan (static code analysis) via your RIPS installation (On-Premises or SaaS)

TrustInSoft CI

Advanced C and C++ static analysis to detect and troubleshoot the most subtle issues in your source code

unlock

secret manager action

By teracyhq-incubator

a github action for secret management with encrypted secrets

Next

List your tool on GitHub Marketplace

Read the documentation
Learn how you can build tools to extend and improve developers' workflows.
Submit your tool for review
Share your app or GitHub Action with millions of developers.
You can’t perform that action at this time.