Version updated for https://github.com/glferreira-devsecops/cascavel-dependency-audit to version v1.0.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Cascavel Dependency Audit is a GitHub Action that automates the detection of vulnerabilities in project dependencies across seven major ecosystems (e.g., npm, pip, Go, Ruby). It scans package files, queries the Google OSV database for known CVEs, generates detailed reports (including SARIF format), and blocks CI/CD pipelines if critical vulnerabilities are found. This zero-configuration tool simplifies dependency security by supporting multiple ecosystems, integrating with native tools when available, and providing robust reporting and ignore options.

Version updated for https://github.com/glferreira-devsecops/cascavel-header-guard to version v1.0.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Cascavel Header Guard is a GitHub Action designed to analyze HTTP security headers in CI/CD pipelines. It audits web application URLs for the presence and quality of critical security headers (e.g., HSTS, CSP, X-Frame-Options), assigns a security score (A+ to F), and blocks deployments if headers fail to meet a specified threshold. This action helps teams proactively identify and address common web vulnerabilities, such as missing or misconfigured headers, before code reaches production.

Version updated for https://github.com/glferreira-devsecops/cascavel-secret-scanner to version v1.0.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Cascavel Secret Scanner is a GitHub Action designed for detecting and preventing hardcoded secrets, such as AWS keys, GitHub tokens, and database passwords, from reaching production environments in CI/CD pipelines. It automates secret scanning across 30+ file types with zero configuration, leveraging over 40 curated detection patterns and providing features like SARIF support, log redaction, and optional Git history scanning. This tool simplifies enterprise-grade secret management, reducing setup complexity and improving security workflows.