goose
A robot for mapping github events into actionable HTTP payloads (by eBay)
github-leak-audit
A GitHub workflow to identify employees that have leaked your organization's code (by lawndoc)
goose | github-leak-audit | |
---|---|---|
1 | 1 | |
12 | 9 | |
- | - | |
0.0 | 0.0 | |
6 days ago | 12 months ago | |
Python | Python | |
MIT License | GNU Affero General Public License v3.0 |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
goose
Posts with mentions or reviews of goose.
We have used some of these posts to build our list of alternatives
and similar projects.
github-leak-audit
Posts with mentions or reviews of github-leak-audit.
We have used some of these posts to build our list of alternatives
and similar projects.
-
Thinking Like a Hacker: Finding Source Code Leaks on GitHub
One is an app I developed to be published alongside this blog post: https://github.com/lawndoc/github-leak-audit. The app uses GitHub’s API to monitor all your GitHub organization members’ personal public repos for potential leaks. It is specifically targeted for the accidental leak scenario described in this blog post. It will detect previously unknown code and new repos. To set it up in your organization, you’ll need to fork the repo under your organization’s ownership, set up a GitHub app or PAT secret for it, and enable the GitHub Actions workflow. Detailed instructions are in the README.
What are some alternatives?
When comparing goose and github-leak-audit you can also consider the following projects:
kafka-ease - A library for the easy and automated creation of topics and acls in Kafka.
cicd-goat - A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
enforce-git-message - Enforces conventional git commit messages for git repositories
WALKOFF - A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, tedious tasks slowing them down. #nsacyber
GitFx - Create a Serverless service in Git hosting.
apicheck - The DevSecOps toolset for REST APIs
kapitan - Generic templated configuration management for Kubernetes, Terraform and other things
dockerfile-security - Static security checker for Dockerfiles