Skip to content
@advanced-security

GitHub Advanced Security

Home of Advanced Security solutions that we can share with the world
README.md

Welcome to the GitHub Advanced Security Organisation! 👋

This organisation contains open source initiatives created by developers at GitHub (and around the world) to show the art of the possible with advanced security. :octocat: 💻

GitHub Advanced Security consists of CodeQL, Code Scanning, Secret Scanning, Security Overview and Dependency Review. A core principle of each of these solutions is being automated and integrable via API's and Webhooks. In this organisation, you will find starter kits, actions, custom queries and bundles, scripts and full-blown solutions that show off how you can integrate into GitHub Advanced Security (GHAS).

In comparison to the official GitHub organisation, a lot of the software you find here is developed as a best effort. These are open-source solutions developed outside of core responsibilities but with the aim for you to leverage and consume as you would any standard open-source software. 👐

We love contributions and feedback from you! So please feel free to open pull requests and issues as you can! 💕

Welcome and we hope what you find here useful 🙇

Pinned Loading

  1. secret-scanning-custom-patterns Public

    Examples of Custom Secret Scanning Patterns

    HTML 159 25

  2. advanced-security-material Public

    Shell 70 26

  3. awesome-codeql Public

    A curated list of awesome CodeQL resources.

    37 4

  4. awesome-secret-scanning Public

    A curated list of awesome GitHub Advanced Security secret scanning resources.

    9 2

  5. awesome-dependabot Public

    A curated list of awesome Dependabot (and related software supply chain) resources.

    3 2

Repositories

Showing 10 of 89 repositories
  • codeql-sap-js Public

    CodeQL models for SAP JavaScript frameworks CAP, UI5 and XSJS

    CodeQL 5 MIT 1 4 3 Updated Apr 24, 2025
  • policy-as-code Public

    GitHub Advanced Security Policy as Code

    Python 82 MIT 19 12 3 Updated Apr 24, 2025
  • cbom-action Public

    Create a Crypto Bill of Materials using CodeQL

    Python 9 MIT 12 1 2 Updated Apr 24, 2025
  • slack-secret-scanning-notifier-azure-function Public

    Slack notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function

    TypeScript 2 MIT 2 3 0 Updated Apr 24, 2025
  • teams-secret-scanning-notifier-azure-function Public

    Microsoft Teams notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function

    TypeScript 6 MIT 1 1 0 Updated Apr 24, 2025
  • ghe-cross-instance-committers Public

    A script which will return the total number of unique de-deuped active committers across multiple GHES instances

    TypeScript 6 MIT 4 2 2 Updated Apr 24, 2025
  • gh-add-files Public

    A GitHub CLI Extension that allows you to add files to your GitHub repositories directly from the command line

    Go 5 MIT 1 0 0 Updated Apr 24, 2025
  • gh-sbom Public

    Generate SBOMs with gh CLI

    Go 181 MIT 13 13 0 Updated Apr 23, 2025
  • dismiss-alerts Public
    Java 14 MIT 3 2 6 Updated Apr 22, 2025
  • codeql-extractor-iac Public

    CodeQL Extractor, Library, and Queries for Infrastructure as Code

    CodeQL 48 MIT 6 16 2 Updated Apr 22, 2025
View all repositories

Top languages

Loading…

Most used topics

Loading…