slsa-provenance-action
action
slsa-provenance-action | action | |
---|---|---|
1 | 4 | |
45 | 111 | |
- | - | |
8.3 | 10.0 | |
4 days ago | about 1 year ago | |
Go | Go | |
MIT License | GNU Lesser General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
slsa-provenance-action
action
-
How to make my team more efficient without being evil? Resource asks were canceled and trying to figure out what to do.
- He implemented a couple of automation tools - gitStream and ReviewPad - that auto assign PRs, add estimated review times, automate some easy code checks, etc.
-
Is it normal to have the bulk of your cycle time (like 80% of it) to be stuck in code review?
3) Use an automation/merging tool, probably gitStream or ReviewPad, that mitigates common hurdles/bottlenecks in the review process around PRs.
-
Modern Trunk-Based Development
At the moment, you can enforce pull request workflows to deal with this separation of concerns using the GitHub Reviewpad Action.
- Show HN: Reviewpad, a GitHub action to automate pull request workflows
What are some alternatives?
in-toto-golang - A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.
reviewpad - Next generation pull requests and issues 🦄
slsa-github-generator - Language-agnostic SLSA provenance generation for Github Actions
action-label-syncer - GitHub Action to sync GitHub labels in the declarative way
paste-secret - Paste your GitHub Secrets to files
actionlint - :octocat: Static checker for GitHub Actions workflow files
secure-repo - Orchestrate GitHub Actions Security
cli - GitHub’s official command line tool
workflow-watcher - Pause a GitHub Actions workflow and wait for another workflow to complete before continuing.
github-act-runner - act as self-hosted runner
slsa - Supply-chain Levels for Software Artifacts