Skip to content
View johnbillion's full-sized avatar

Sponsors

Sponsoring

@shivammathur
@ondrejmirtes
@itsgoingd
@sebastianbergmann
@derickr
@szepeviktor

Organizations

@WordPress @humanmade

Block or report johnbillion

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Showing results

The most advanced data processing framework allowing to build scalable data processing pipelines and move data between various data sources and destinations.

PHP 612 38 Updated Feb 25, 2025

🔎 Static code analysis engine to find security issues in code.

OCaml 1,036 65 Updated Feb 17, 2025

A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.

Python 124 3 Updated Feb 17, 2025

PHP Static Analysis Tool - discover bugs in your code without running it!

PHP 13,229 907 Updated Feb 25, 2025

🌟 Build beautiful, accessible, high-performance documentation websites with Astro

TypeScript 5,984 609 Updated Feb 25, 2025

The web framework for content-driven websites. ⭐️ Star to support our work!

TypeScript 49,381 2,625 Updated Feb 25, 2025

Script to audit GitHub Action Workflow files for potential vulnerabilities.

Python 153 19 Updated Aug 28, 2024

GitHub token permissions Monitor and Advisor actions

Python 269 22 Updated Dec 19, 2024

GitHub Actions Cache Native Malware - for Educational and Research Purposes only.

TypeScript 56 2 Updated Feb 7, 2025

boostsecurityio/lotp

HTML 112 11 Updated Feb 25, 2025

A GitHub Action used for publishing an Action to ghcr.io as an OCI container.

TypeScript 57 10 Updated Nov 8, 2024

Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.

Python 271 16 Updated Feb 6, 2025

Runtime Security Solution for your CI/CD Pipeline

JavaScript 96 4 Updated Feb 19, 2025

Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets

Go 794 64 Updated Jan 22, 2025

SARIF Microsoft Visual Studio Code extension

TypeScript 113 51 Updated Oct 19, 2024

Official GitHub Action for OpenSSF Scorecard.

Go 283 72 Updated Feb 24, 2025

A curated list of awesome things related to securing your GitHub Actions workflows.

21 Updated Feb 11, 2025

Pin your GitHub actions to a specific hash

JavaScript 84 10 Updated Feb 14, 2025

Guideline of best practices to follow to configure Github Enterprise Cloud self-hosted runners in a secure way.

80 3 Updated Feb 23, 2024

Docker Scout GitHub Action

JavaScript 101 32 Updated Feb 12, 2025

A CLI that update GitHub Actions's `permissions` automatically

TypeScript 64 10 Updated Jun 27, 2023

An Action shows timeline of a workflow in a run summary.

TypeScript 301 7 Updated Feb 21, 2025

A GitHub action that performs static analysis for shell scripts using shellcheck, shfmt and checkbashisms.

Shell 133 13 Updated Jan 23, 2025

How GitHub Actions workflows can be hacked

Shell 118 10 Updated Aug 23, 2024

A vulnerability scanner for container images and filesystems

Go 9,429 605 Updated Feb 25, 2025

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

Python 242 32 Updated Feb 26, 2025

Anchore container analysis and scan provided as a GitHub Action

JavaScript 231 77 Updated Feb 25, 2025
TypeScript 327 87 Updated Feb 25, 2025

boostsecurityio/poutine

Go 256 28 Updated Feb 13, 2025

Orchestrate GitHub Actions Security

Go 274 41 Updated Feb 12, 2025
Next
Showing results