Skip to content

AppSec Scanner

Actions
Runs SAST (Semgrep), SCA (Trivy), and IaC (terrascan) scans
latest
Latest
By NirAlon
Star (2)

Tags

 (2)
securitycode-scanning-ready

AppSec Scanner Action

A composite GitHub Action that runs:

  • ✅ Semgrep for Static Analysis (SAST)
  • ✅ Terrascan for Infrastructure as Code (IaC) scanning
  • ✅ Trivy for Software Composition Analysis (SCA)

Requirements

  • Ubuntu Runner
  • Python pre-installed (for semgrep)

Usage

- name: AppSec Scanner
  uses: NirAlon/appsec_scan@latest

Contributors (1)

@NirAlon

Resources

AppSec Scanner is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.

About

Runs SAST (Semgrep), SCA (Trivy), and IaC (terrascan) scans
latest
Latest
By NirAlon

Tags

 (2)
securitycode-scanning-ready

Contributors (1)

@NirAlon

Resources

AppSec Scanner is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.