Suggest an alternative to

fossa-action

The action sets up and caches the latest release of fossa-cli, infer the correct configuration from the current system state, analyze the project for a list of its dependencies, and upload the results to FOSSA.

Why do you think that https://github.com/aquasecurity/trivy is a good alternative to fossa-action

A URL to the alternative repo (e.g. GitHub, GitLab)

Here you can share your experience with the project you are suggesting or its comparison with fossa-action. Optional.

A valid email to send you a verification link when necessary or log in.