Security
Find, fix, and prevent security vulnerabilities before they can be exploited.
1057 results filtered by Security
Apps
Rewind Backups for GitHub (Formerly BackHub)
By backhub
Automatic daily backups of your GitHub repos and metadata with on-demand restores to protect your business
RecommendedGuardRails
By guardrailsio
GuardRails provides continuous security feedback for modern development teams
2.9k installsGitProtect.io FREE Backup for GitHub
By xoperosoftware
Automatic, daily repo and metadata backup - no maintenance needed: fast restore, DR, AWS, and S3 cloud storage support
684 installsSemgrep
By returntocorp
Code scanning at ludicrous speed. Find bugs and reachable dependency vulnerabilities. Enforce standards on every commit
4.5k installsCloudback Backup
By cloudback
Automatic backups of your repos, metadata and even LFS. Backup to AWS, Azure, OneDrive, GCP, and more. Instant restores
798 installsSocket Security
By SocketDev
Protect your app from malicious open source dependencies
3k installsNightfall DLP: GitHub Secrets Scanner
By nightfallai
Nightfall automatically detects PII, credentials, secrets, and more in GitHub repos via machine learning. Free tier
144 installsDebricked
By debricked
Automatically identify, fix and prevent vulnerabilities in your open source dependencies
2k installsBluBracket Community Edition
By BluBracket
BluBracket is like Clippy for code security, but—you know—not as annoying and a lot more effective
814 installsDrata (Version Control)
By drata
The Drata (Version Control) app uses read-only repo access to continuously monitor your SOC 2 compliance posture
2.1k installsActions
SecureStack Log4j Vulnerability Analysis
By SecureStackCo
Scans your application for the presence of serious vulnerabilities in Log4j
13 starsTeleport Auth (Application Access)
By teleport-actions
Generates credentials so that your workflow can access applications protected by Teleport
3 starsKubernetes Security Config Watch
By sysdiglabs
Run security privilege comparison against Kubernetes workloads when a PR is open
28 starsTartufo Scan
By godaddy
Runs scan-local-repo with default options
7 starsIAC connectivity risk analysis
By algosec
Extensible security plugin platform that checks code for potential vulnerabilities before any commits to a repository
29 starsbrew-dependency-submission-action
By advanced-security
Brew Lockfile Dependency Submission Action
insightCloudSec Scan
By rapid7
Scans a cloudformation template and saves results to disk.
8 starsCodeQL Bundle
By advanced-security
Action to build custom CodeQL bundles
18 starsChainAlert
By Checkmarx
Action for opting in to ChainAlert service
38 starsDefenseCode ThunderScan Action
By defensecode
Source code scanning for vulnerabilities using DefenseCode ThunderScan SAST solution
38 starsList your tool on GitHub Marketplace
- Read the documentation
- Learn how you can build tools to extend and improve developers' workflows.
- Submit your tool for review
- Share your app or GitHub Action with millions of developers.