225 Open source projects that are alternatives of or similar to mobsf-ci

Another Concourse GitHub status resource

Docker-compose version of jenkins-stack-kubernetes

Quickly provision jenkins blue ocean on kubernetes with persistent configuration

An open source, multi-cloud DevSecOps compliance checker

Best practices and integrations available for Spring Boot based Microservice in a single repository.

Terraform Module to Provision a Basic IAM System User Suitable for CI/CD Systems (E.g. TravisCI, CircleCI)

Utility for managing CICD state, sending notifications, and mediating Slack interactive messages & slash commands across multiple flows of execution in CICD platforms such as Tekton.

Git Anti-Virus Scan Action - Detect trojans, viruses, malware & other malicious threats.

Terraform module to provision webhooks on a set of GitHub repositories

运维开发

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

Command line utility to send messages with attachments to Slack channels via Incoming Webhooks

A GDPR Data Protection Impact Assessment (DPIA) tool to assist organisations to evaluate data protection risks with respect to the EU's General Data Protection Regulation. 🇪🇺

La intención de la workshop es mostrar y orientar a los equipos de desarrollo, seguridad y devops (entre otros) que quieran comenzar en DevSecOps, a segurar sus aplicaciones o bien a conocer un poco más acerca del desarrollo seguro, para esto, estaremos otorgando algunos tips e información que fuimos aprendiendo para armar un Pipeline DevSecOps …

Command line utility for updating GitHub commit statuses and enabling required status checks for pull requests

tfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.

Ansible detector scanner playbook to verify target Linux hosts using the official Red Hat Log4j detector script RHSB-2021-009 Remote Code Execution - log4j (CVE-2021-44228)

Terraform provider for Sonatype Nexus

Integrate SonarQube scanner to GitHub Actions

Ultimate DevSecOps library

🎯 A set of Site Reliability Engineering notes & challenges

Gets in the way of your victim's traffic and out of yours

The ultimate Django template: production ready Django 3.2 with Docker, HTTPS and CI/CD using Github actions ‎️‍🔥

Reusable iOS script for Travis CI with Slack, Testflight, HockeyApp support

Blueprint for a full featured DSC project for Push / Pull with or without CI/CD

Vimana is an experimental security framework that aims to provide resources for auditing Python web applications.

GitHub Data Loss Prevention (DLP) Action: Scan Pull Requests for sensitive data, like credentials & secrets, PII, credit card numbers, and more.

A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it's nmap converter.

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading

基于golang实现的一种分布式云存储服务

Easily build and deploy with latest Flutter build tasks for Azure DevOps Pipelines Tasks

Terraform Provider to manage spinnaker pipelines

Fast-track your developers and devops engineers by allowing them to programmatically copy-paste / deploy changes and work offline

Terraform module to fetch any kind of artifacts using curl (binary and text okay)

Our Library of GitHub Actions

Ruby on Rails Continuous Deployment Ecosystem to maintain Healthy Stable Development

Action to set up AWS SAM CLI and add it to the PATH

let devops for docker, dockerswarm ,k8s easy

This repository provides a general DevOps practices such MSA, IaC, CICD and Monitoring. AWS various services are used to provide DevOps best practices.

Growing repository of Infrastructure as Code demos (initially created for DevOps Wall Street)

'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.

Improve your code security by running different security checks/validation in a simple way.

See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)

Build a CI/CD for Microservices and Serverless Functions in AWS ☁️

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Azure IoT extension for Azure CLI

Terraform module that creates an S3 bucket with an optional IAM user for external CI/CD systems

Github Action that create Github Release automatically

Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.

Docker project for generating a tomcat docker image for Pega

CLI to interact with Kondukto

WireBug is a toolset for Voice-over-IP penetration testing

Ansible Role to deploy GitHub Actions self-hosted runner

Deploy, update, and stage your WAFs while managing them centrally via FMS.

🤖 Run a Mayhem for API scan in GitHub Actions

Deploy PHP projects using Deployer from Github Actions

自动化运维平台：CMDB、CI/CD、DevOps、资产管理、任务编排、持续交付、运维管理、基于Django + REST framework + Vue 运维发布平台，UI自动化测试平台，

⚙️ Scan your Java, Kotlin, PHP, Python, JavaScript, TypeScript projects at GitHub with Qodana

Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable dependencies are found.