Open Source Project Security Baseline Scanner

February 24, 2026

Version updated for https://github.com/revanite-io/osps-baseline-action to version v1.3.0.

This action is used across all versions by 17 repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

This GitHub Action automates security assessments for repositories by evaluating them against the Open Source Project Security (OSPS) Baseline controls. It generates results in multiple formats (YAML, JSON, SARIF) and can directly upload findings to GitHub’s Security tab as SARIF files, streamlining security compliance and reporting. The action simplifies identifying and addressing security gaps in open-source projects.

Release notes

Changelog

🚀 Features

feat: write assessment results to workflow summary @jmeridth (#11)

See details of all code changes since previous release

revanite-io
GitHub Actions