Version updated for https://github.com/gebalamariusz/cloud-audit to version v1.0.2. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Summary: The cloud-audit GitHub Action is an open-source AWS security scanner that automates the detection and remediation of security risks in AWS environments. It performs 47 checks across 15 AWS resource types, maps findings to CIS AWS Foundations Benchmark controls, and uniquely correlates findings into exploitable attack paths while estimating breach costs.

Version updated for https://github.com/GlueOps/github-actions-cleanup-redundant-cd-prs to version v1.0.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action automates the cleanup of redundant pull requests and their associated branches created during Continuous Deployment workflows, particularly in scenarios where multiple releases are generated but only the latest one is approved.

Version updated for https://github.com/GlueOps/github-actions-opentofu-continuous-delivery to version v2.0.2. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action facilitates automated continuous delivery workflows using OpenTofu and Terraform. It automates tasks such as infrastructure planning, change detection, manual approval for production deployments, and Slack notifications.

Version updated for https://github.com/Helixar-AI/ReleaseGuard to version v0.1.5. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary ReleaseGuard is an open-source artifact security engine designed to secure and validate final build outputs in software development pipelines. It automates artifact scanning for sensitive data, applies hardening transforms, generates SBOMs, signs and attests artifacts, and enforces release policies, helping to prevent issues like leaked secrets, metadata, or unsigned executables.

Version updated for https://github.com/lhotari/sandboxed-trivy-action to version v1.0.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The Sandboxed Trivy Action is a GitHub Action designed to run the Trivy vulnerability scanner within a highly secure, sandboxed Docker container. It automates the detection of vulnerabilities in container images, file systems, code repositories, and infrastructure-as-code configurations, while employing strict security measures to prevent container escapes and limit access to sensitive resources.

Version updated for https://github.com/mercury233/action-cache-download-file to version v1.1.0. This action is used across all versions by 8 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action automates the process of downloading a file from a specified URL and caching it to avoid redundant downloads in future workflow runs. It addresses the inefficiency of repeatedly downloading the same file by leveraging caching, which improves speed and reduces bandwidth usage.

Version updated for https://github.com/michael-bey/gass to version v1.1.0. This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 20. Go to the GitHub Marketplace to find the latest changes. Action Summary The GASS GitHub Action uses AI to analyze and score the quality of pull request code, then stores the results on-chain using the O2 Oracle platform. It automates code quality reviews, enabling repositories to generate developer performance metrics for use in applications such as token distribution, contributor reputation systems, and community rewards.

Version updated for https://github.com/mmnto-ai/totem to version @mmnto/cli@1.5.1. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Totem is a governance tool that compiles project-specific architectural rules into a persistent, model-agnostic memory layer for AI coding agents and a deterministic enforcement system for Git workflows. It automates the enforcement of coding standards and architectural constraints across repositories, ensuring consistency and compliance without requiring repeated input for AI tools like Copilot or Claude.

Version updated for https://github.com/nextmv-io/setup-nextmv to version v1.0.0. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The setup-nextmv GitHub Action simplifies the setup of the Nextmv CLI within workflows, enabling users to manage and interact with Nextmv Platform apps efficiently. It automates the installation of the CLI, optional version management with uv, and API key configuration for performing nextmv cloud operations, streamlining deployment and app management tasks.