Version updated for https://github.com/homeofe/supply-chain-guard to version v2.0.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The supply-chain-guard GitHub Action is an open-source security scanner designed to detect and mitigate software supply-chain threats in npm, PyPI, and VS Code extensions. It automates the identification of advanced malware campaigns, suspicious code patterns, and indicators of compromise (e.

Version updated for https://github.com/joepitt91/action-digest-from-dockerhub-image to version v1.1.3. This action is used across all versions by 4 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action retrieves the current digest of a specified DockerHub image tag, enabling users to identify the exact version of an image based on its cryptographic hash. It automates the process of querying DockerHub for image metadata and supports filtering by operating system and architecture.

Version updated for https://github.com/mikelane/pytest-gremlins-action to version v1.1.2. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The pytest-gremlins-action integrates pytest-gremlins mutation testing into your CI pipeline, automating the process of identifying weaknesses in your test suite by simulating code mutations. It streamlines tasks like parallel mutation testing, caching for faster runs, PR comments with detailed mutation reports, and enforcing a mutation score threshold to maintain or improve code quality.

Version updated for https://github.com/mmnto-ai/totem to version @mmnto/cli@1.3.3. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Totem is a GitHub Action and CLI tool designed to enforce project-specific architectural rules and coding standards across repositories, with or without the use of AI assistants. It provides a persistent, shared memory layer and a deterministic enforcement mechanism through pre-push git hooks, ensuring consistency and compliance without requiring real-time AI interaction or external dependencies.

Version updated for https://github.com/msaad00/agent-bom to version v0.72.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Summary: The agent-bom GitHub Action is a specialized security scanner designed for AI infrastructure and supply chains. It automates the discovery of AI agents, MCP servers, and their configurations, generates a comprehensive inventory (AI Bill of Materials), scans dependencies for known vulnerabilities (CVEs), and maps their potential impact on agents, credentials, and tools.

Version updated for https://github.com/samikroy/ms-defender-scout to version v1.0.1. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Microsoft Defender Scout is a GitHub Action designed for automating security assessments across Microsoft Defender products by generating Advanced Hunting queries and comprehensive HTML reports. It streamlines the process of identifying vulnerabilities and threats using the Microsoft Graph API, making it easier to perform detailed analyses and share results.

Version updated for https://github.com/sauremilk/drift to version v1.1.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Drift is a static analysis tool designed to detect architectural erosion in codebases, particularly caused by AI-generated code from tools like Copilot or ChatGPT. It identifies the loss of design coherence, such as pattern fragmentation, structural inconsistencies, and near-duplicate functions, which traditional linters and code quality tools often miss.

Version updated for https://github.com/somaz94/contributors-action to version v1.0.0. This action is used across all versions by 13 repositories. Action Type This is a Docker action. Go to the GitHub Marketplace to find the latest changes. Action Summary The Contributors Action is a GitHub Action designed to automate the generation and updating of a contributors list for a repository using GitHub data. It simplifies the process of showcasing contributors by generating lists in various formats (e.

Version updated for https://github.com/somaz94/kube-diff-action to version v1.3.1. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The kube-diff-action GitHub Action automates the process of comparing local Kubernetes manifests (YAML files, Helm charts, or Kustomize overlays) against the live state of a cluster to detect configuration drift. It identifies changes, additions, deletions, and unchanged resources, and can optionally post the diff results as comments on pull requests for better collaboration and visibility.