Keyword: github-action

supply-chain-guard
Released
7h ago
Version
5.2.42
Open-source supply-chain security scanner for npm, PyPI, Cargo, Go, Docker, VS Code extensions, GitHub Actions, IaC and Solana C2. Detects GlassWorm, Shai-Hulud, PPE attacks, dependency confusion and 120+ malware indicators. Generates CycloneDX 1.6 SBOMs
security supply-chain malware-detection npm pypi cargo +10
clud-bug
Released
27m ago
Version
0.6.34
Skill-driven Claude PR review. Ship a brand-voice skill, get brand reviews. Each finding cites the skill that motivated it. CLI installs the workflow + a baseline kit; add more from skills.sh.
claude claude-code github-action code-review pull-request ai +1
@proofofwork-agency/toolpin
Released
56m ago
Version
0.3.0
Trusted install, lockfile, and governance layer for MCP servers
mcp model-context-protocol lockfile supply-chain cli github-action
testchronicle
Released
5d ago
Version
0.1.18
CLI agent for syncing test data to Test Chronicle
testing test-management ci-cd github-action test-sync test-automation +2
@submux/codedecay
Released
4d ago
Version
0.1.6
Open-source CLI for PR regression-risk, blast-radius, and code-decay analysis
ai ci code-quality github-action pull-request regression-risk +2
vocareum-publisher
Released
15h ago
Version
1.3.2
Publish assignment content from GitHub to Vocareum
vocareum education assignments publishing cli github-action
@xcon-viewer/github-action
Released
yesterday
Version
0.2.0
GitHub Action for validating and rendering XCON code blocks in Markdown.
xcon xcon-viewer github-action markdown viewer
@submuxhq/codedecay
Released
yesterday
Version
0.3.1
Open-source CLI for PR regression-risk, blast-radius, and code-decay analysis
ai ci code-quality github-action pull-request regression-risk +2
@ecodrix/erix-buddy
Released
2d ago
Version
0.2.2
Open-source, multi-provider AI code reviewer. Bring your own key (Gemini, OpenAI, Anthropic, Ollama, OpenRouter, Groq, Azure, DeepSeek, Mistral, xAI) — or use the optional ECODrix-hosted relay.
code-review ai llm gemini openai anthropic +14
lockdelta
Released
3d ago
Version
0.1.5
Diff dependency lockfiles across ecosystems — as a GitHub Action, CLI, or library
dependencies lockfile diff github-action python uv +2
@francosimon/vlayer
Released
22h ago
Version
0.25.2
Open-source HIPAA compliance scanner for healthcare code — CLI for verification-layer.
hipaa compliance healthcare security phi scanner +2
@eviano/tribunal
Released
yesterday
Version
0.2.0
A deterministic, no-LLM-in-the-loop CI gate that catches agent-PR defects: assertion-free tests, hallucinated symbols, and PR claims that contradict the diff.
ai agents code-review ci static-analysis ast +2
@ykstormsorg/goldset
Released
5d ago
Version
0.2.4
Lock your AI app's behavior. Golden datasets + LLM-as-judge + structural assertions in CI.
ai llm evaluation testing golden-dataset llm-as-judge +3
gh-bump
Released
2 months ago
Version
1.0.2
AI-powered Dependabot security fix agent. Analyzes code with LLM, applies fixes via GitHub API, creates PRs. Works as CLI and GitHub Action.
dependabot security github ai llm dependency +3
mcp-server-diff
Released
1h ago
Version
3.0.0
Diff MCP server public interfaces - CLI tool and GitHub Action
cli github-action mcp model-context-protocol diff api-changes
tsgo-ready
Released
10h ago
Version
0.2.0
Scan your TypeScript repo for what the move to the native Go compiler (tsgo / TypeScript 7.0) breaks — removed tsconfig flags, Compiler-API-dependent tooling that needs TS 6 side-by-side, and decorator/JSDoc behavior changes. Deterministic CLI + GitHub Ac
typescript typescript-7 tsgo typescript-go corsa migration +8
@brett.buskirk/agent-gate
Released
20h ago
Version
1.1.0
Guardrail checks for AI-agent-generated pull requests
ai-agents github-action code-review security ci guardrails
localeguard
Released
20h ago
Version
0.5.0
Open-source localization quality gate for React and TypeScript projects. Detects missing keys, broken interpolation, and invalid locale files before merge.
localization i18n react-i18next react-intl linter ci +2
@fernforge/mcp-conform
Released
yesterday
Version
0.1.0
Author-side pre-publish conformance & safety linter for MCP (Model Context Protocol) servers — eslint for your MCP server. Checks tool annotations, schema hygiene, tool-poisoning/injection patterns, and registry/distribution metadata before you publish. C
mcp model-context-protocol modelcontextprotocol lint linter conformance +9
continuous-improvement
Released
2d ago
Version
3.16.0
The persistent-memory and runtime-discipline layer for Claude Code. It remembers the corrections you already gave, grounds every edit in real facts before it lands, and — through the Mulahazah engine — turns each fix into a reusable instinct, so a lesson
claude-code claude-code-skill ai-agent agent-skill ai-discipline mulahazah +6
sloplock
Released
20h ago
Version
1.0.3
GitHub Action that blocks AI-hallucinated, nonexistent, and too-new dependencies in pull requests.
supply-chain github-action crates go maven jvm +14
@neurcode/action
Released
3d ago
Version
0.2.2
GitHub Action for Neurcode - Code adherence verification gatekeeper
github-action code-governance neurcode ci-cd
oauthlint
Released
3h ago
Version
0.7.0
Catch the OAuth/OIDC/JWT anti-patterns AI coding tools systematically produce. CLI wrapper around the oauthlint-rules Semgrep rule pack.
oauthlint semgrep oauth oauth2 oidc jwt +12
verification-layer
Released
4d ago
Version
0.27.0
Open-source HIPAA compliance scanner for healthcare code. 131 rules, 5 HIPAA categories. CLI + CI/CD + VS Code.
hipaa compliance healthcare security cli scanner +14
@7nohe/confluence-md
Released
3d ago
Version
0.2.2
GitHub Action and CLI to convert Markdown (GFM) to Confluence Cloud storage format
github-action cli confluence markdown documentation