All

101 repositories

generate-sbom-action
Public
An Action to wrap creating an SBOM via REST API
TypeScript
•
MIT License
•5•21•1•7•Updated Jun 23, 2026Jun 23, 2026
dismiss-alerts
Public
Dismiss GitHub Code Scanning alerts from SARIF suppression data
sarif code-scanning sast
sarif code-scanning sast code-security ghas github-advanced-security
Java
•
MIT License
•4•21•2•9•Updated Jun 23, 2026Jun 23, 2026
codeql-sap-js
Public
CodeQL models for SAP JavaScript frameworks CAP, UI5 and XSJS
TypeScript
•
MIT License
•5•7•10•9•Updated Jun 23, 2026Jun 23, 2026
secret-scanning-custom-patterns
Public
Examples of Custom Secret Scanning Patterns for use with GitHub Secret Protection/Advanced Security
regex regex-patterns secret-scanning
regex regex-patterns secret-scanning github-advanced-security
HTML
•
MIT License
•28•175•2•2•Updated Jun 23, 2026Jun 23, 2026
advanced-security-material
Public
security code-scanning codeql
security code-scanning codeql advanced-security advanced-security-training
Shell
•26•80•3•11•Updated Jun 23, 2026Jun 23, 2026
SARIF-viewer
Public
JetBrains IDE plugin for displaying SARIF from GHAS or from a local file
Kotlin
•
MIT License
•5•10•3•10•Updated Jun 23, 2026Jun 23, 2026
codeql-development-template
Public template
Copilot-native repository template for CodeQL query development
CodeQL
•
MIT License
•3•9•1•1•Updated Jun 23, 2026Jun 23, 2026
codeql-development-mcp-server
Public
LLM <-- MCP --> CodeQL( AST | CFG | CLI | LSP )
mcp static-analysis ast
mcp static-analysis ast code-quality cfg lsp code-security codeql copilot-enabled
TypeScript
•
Other
•3•27•8•1•Updated Jun 23, 2026Jun 23, 2026
component-detection-dependency-submission-action
Public
This GitHub Action runs the microsoft/component-detection library to automate dependency extraction at build time.
github-actions dependency-submission
github-actions dependency-submission
TypeScript
•
MIT License
•32•21•7•9•Updated Jun 23, 2026Jun 23, 2026
ghas-reviewer-app
Public
GitHub Advanced Security Pull Request Security Team required review GitHub App
github-app advanced-security
github-app advanced-security
Python
•
MIT License
•11•37•6•6•Updated Jun 23, 2026Jun 23, 2026
ghas-to-csv
Public
Play with GHAS API to provide posture data over time
csv github-actions github-advanced-security
csv github-actions github-advanced-security
Python
•
MIT License
•17•42•1•1•Updated Jun 22, 2026Jun 22, 2026
awesome-secret-scanning
Public
A curated list of awesome GitHub Advanced Security secret scanning resources.
awesome awesome-list secret-scanning
awesome awesome-list secret-scanning github-advanced-security
PowerShell
•
MIT License
•4•17•2•1•Updated Jun 22, 2026Jun 22, 2026
validate-secrets
Public
Extensible secret validation tool for GitHub Secret Scanning and beyond.
Python
•
MIT License
•2•2•1•0•Updated Jun 22, 2026Jun 22, 2026
flake8-sarif-formatter
Public
Format Flake8 results as SARIF for input to SAST tools such as GitHub Code Scanning
Python
•
MIT License
•2•2•1•3•Updated Jun 22, 2026Jun 22, 2026
secret-scanning-review-action
Public
Action to detect if a secret is initially detected in a pull request
PowerShell
•
MIT License
•8•22•4•4•Updated Jun 22, 2026Jun 22, 2026
gradle-lock-dependency-submission-action
Public
Gradle Lockfile Dependency Submission Action
Python
•
MIT License
•1•2•0•4•Updated Jun 22, 2026Jun 22, 2026
policy-as-code
Public
GitHub Advanced Security Policy as Code
Python
•
MIT License
•22•104•9•6•Updated Jun 22, 2026Jun 22, 2026
enterprise-security-team
Public
Manage a uniform team of security managers for every organization in your enterprise
enterprise ghas
enterprise ghas
Python
•
MIT License
•6•24•0•2•Updated Jun 22, 2026Jun 22, 2026
maven-dependency-submission-action
Public
GitHub Action for submitting Maven dependencies
dependency-submission
dependency-submission
TypeScript
•
MIT License
•39•61•19•12•Updated Jun 19, 2026Jun 19, 2026
codeql-scanner-vscode
Public
CodeQL Plugin for VSCode to help scan and view alerts in code
TypeScript
•
MIT License
•2•6•1•7•Updated Jun 19, 2026Jun 19, 2026
conda-dependency-submission-action
Public
GitHub Action that scans Conda manifest files and submits their dependencies to GitHub's Dependency Graph,
dependency-graph conda dependabot
dependency-graph conda dependabot dependency-graph-api
TypeScript
•
MIT License
•3•1•0•3•Updated Jun 19, 2026Jun 19, 2026
codeql-extractor-iac
Public
CodeQL Extractor, Library, and Queries for Infrastructure as Code
CodeQL
•
MIT License
•12•60•13•6•Updated Jun 19, 2026Jun 19, 2026
sample-javascript-monorepo
Public
Detached fork of babel/babel to use as a TypeScript monorepo sample with 150+ packages using the monorepo-code-scanning-action https://github.com/advanced-secu…
TypeScript
•
MIT License
•1•0•0•6•Updated Jun 19, 2026Jun 19, 2026
spdx-dependency-submission-action
Public
upload an SPDX 2.2 formatted SBOM to GitHub's dependency submission API
dependency-submission
dependency-submission
JavaScript
•
MIT License
•7•28•5•4•Updated Jun 18, 2026Jun 18, 2026
ghe-cross-instance-committers
Public
A script which will return the total number of unique de-deuped active committers across multiple GHES instances
ghas
ghas
TypeScript
•
MIT License
•5•6•2•10•Updated Jun 17, 2026Jun 17, 2026
sarif-toolkit
Public
All things SARIF, as an Action
Python
•
MIT License
•3•4•4•7•Updated Jun 17, 2026Jun 17, 2026
codeql-sarif-security-standard-annotator
Public
Compare a CodeQL SARIF results file to a security standard CWE list and annotate the SARIF rules with a tag to highlight results applicable to the security stan…
TypeScript
•
MIT License
•1•10•1•4•Updated Jun 17, 2026Jun 17, 2026
cocoapods-dependency-submission-action
Public
CocoaPods Lockfile Dependency Submission Action
Python
•
MIT License
•3•5•2•4•Updated Jun 11, 2026Jun 11, 2026
cbom-action
Public
Create a Crypto Bill of Materials using CodeQL
Python
•
MIT License
•18•15•2•1•Updated Jun 11, 2026Jun 11, 2026
reusable-workflows
Public
Advanced Security Reusable GitHub Actions Workflows
MIT License
•5•4•5•5•Updated Jun 10, 2026Jun 10, 2026

ProTip! When viewing an organization's repositories, you can use the props. filter to filter by custom property.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advanced Security

All

All

101 repositories

generate-sbom-action

dismiss-alerts

codeql-sap-js

secret-scanning-custom-patterns

advanced-security-material

SARIF-viewer

codeql-development-template

codeql-development-mcp-server

component-detection-dependency-submission-action

ghas-reviewer-app

ghas-to-csv

awesome-secret-scanning

validate-secrets

flake8-sarif-formatter

secret-scanning-review-action

gradle-lock-dependency-submission-action

policy-as-code

enterprise-security-team

maven-dependency-submission-action

codeql-scanner-vscode

conda-dependency-submission-action

codeql-extractor-iac

sample-javascript-monorepo

spdx-dependency-submission-action

ghe-cross-instance-committers

sarif-toolkit

codeql-sarif-security-standard-annotator

cocoapods-dependency-submission-action

cbom-action

reusable-workflows

All

All

Repositories list

101 repositories