Version updated for https://github.com/Nexora-NHI/nexora-cli to version v0.2.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The nexora-cli is an open-source command-line tool designed to identify Non-Human Identity (NHI) risks in GitHub Actions workflows, Kubernetes manifests, and Infrastructure-as-Code (IaC) files like Terraform. By statically detecting misconfigurations such as unpinned actions, hardcoded secrets, and overly permissive policies, it helps prevent security incidents involving service accounts and machine credentials.

Version updated for https://github.com/Nexora-NHI/nexora-cli to version v0.1.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The nexora-cli is an open-source command-line tool that identifies Non-Human Identity (NHI) risks in GitHub Actions workflows, Kubernetes manifests, and Terraform/IaC files through static analysis. It automates the detection of misconfigurations such as unpinned actions, hardcoded secrets, and overly permissive IAM policies, helping prevent security breaches involving machine credentials and service accounts.