Open Source Project Security Baseline Scanner

February 25, 2026

Version updated for https://github.com/revanite-io/osps-baseline-action to version v1.3.1.

This action is used across all versions by 17 repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

This GitHub Action automates security assessments for repositories based on the Open Source Project Security (OSPS) Baseline controls. It evaluates repositories for compliance with defined security standards and can output results in YAML, JSON, or SARIF formats, with optional integration into GitHub’s Security tab for enhanced visibility. This action streamlines security auditing, helps identify vulnerabilities, and facilitates secure project maintenance.

Release notes

Changelog

🐛 Bug Fixes

fix: handle empty scanner results and add fail-on-error input @jmeridth (#12)

See details of all code changes since previous release

revanite-io
GitHub Actions