advanced-security repositories

set-codeql-language-matrix

Public

Automatically set the CodeQL matrix job using the languages in your repository.

actions action codeql

Python

•

MIT License

•11•19•4•1•Updated

May 20, 2026

codeql-development-mcp-server

Public

LLM <-- MCP --> CodeQL( AST | CFG | CLI | LSP )

mcp static-analysis ast

mcp static-analysis ast code-quality cfg lsp code-security codeql copilot-enabled

TypeScript

•

Other

•2•25•6•0•Updated

May 20, 2026

dismiss-alerts

Public

Dismiss GitHub Code Scanning alerts from SARIF suppression data

sarif code-scanning sast

sarif code-scanning sast code-security ghas github-advanced-security

Java

•

MIT License

•4•21•2•7•Updated

May 20, 2026

brew-dependency-submission-action

Public

Brew Lockfile Dependency Submission Action

homebrew brew actions

Python

•

MIT License

•4•3•1•8•Updated

May 19, 2026

secret-scanning-tools

Public

Testing Suite for GitHub Secret Scanning Custom Patterns

secret-scanning github-advanced-security

Python

•

MIT License

•2•8•0•7•Updated

May 19, 2026

cocoapods-dependency-submission-action

Public

CocoaPods Lockfile Dependency Submission Action

Python

•

MIT License

•3•5•2•5•Updated

May 19, 2026

sarif-toolkit

Public

All things SARIF, as an Action

Python

•

MIT License

•3•4•4•6•Updated

May 19, 2026

codeql-sap-js

Public

CodeQL models for SAP JavaScript frameworks CAP, UI5 and XSJS

TypeScript

•

MIT License

•4•7•10•2•Updated

May 18, 2026

reusable-workflows

Public

Advanced Security Reusable GitHub Actions Workflows

MIT License

•6•3•5•3•Updated

May 18, 2026

dependabot-kev-action

Public

Action to detect if any open Dependabot alerts are in the CISA Known Exploited Vulnerabilities (KEV) Catalog of CVEs and fail the workflow.

PowerShell

•

MIT License

•3•9•2•1•Updated

May 18, 2026

codeql-sarif-security-standard-annotator

Public

Compare a CodeQL SARIF results file to a security standard CWE list and annotate the SARIF rules with a tag to highlight results applicable to the security stan…

TypeScript

•

MIT License

•1•10•1•4•Updated

May 18, 2026

secret-scanning-review-action

Public

Action to detect if a secret is initially detected in a pull request

PowerShell

•

MIT License

•8•22•4•5•Updated

May 18, 2026

codeql-development-template

Public template

Copilot-native repository template for CodeQL query development

CodeQL

•

MIT License

•2•9•1•2•Updated

May 18, 2026

policy-as-code

Public

GitHub Advanced Security Policy as Code

Python

•

MIT License

•21•101•9•7•Updated

May 18, 2026

ghas-reviewer-app

Public

GitHub Advanced Security Pull Request Security Team required review GitHub App

github-app advanced-security

Python

•

MIT License

•11•37•6•4•Updated

May 18, 2026

advanced-security-material

Public

security code-scanning codeql

security code-scanning codeql advanced-security advanced-security-training

Shell

•26•79•1•8•Updated

May 16, 2026

enterprise-security-team

Public

Manage a uniform team of security managers for every organization in your enterprise

enterprise ghas

Python

•

MIT License

•6•24•0•2•Updated

May 15, 2026

sample-javascript-monorepo

Public

Detached fork of babel/babel to use as a TypeScript monorepo sample with 150+ packages using the monorepo-code-scanning-action https://github.com/advanced-secu…

TypeScript

•

MIT License

•1•0•0•6•Updated

May 15, 2026

ghas-to-csv

Public

Play with GHAS API to provide posture data over time

csv github-actions github-advanced-security

Python

•

MIT License

•17•42•1•2•Updated

May 14, 2026

codeql-bundle

Public

CLI to build a custom CodeQL bundle

Python

•

MIT License

•6•13•4•1•Updated

May 14, 2026

conda-dependency-submission-action

Public

GitHub Action that scans Conda manifest files and submits their dependencies to GitHub's Dependency Graph,

dependency-graph conda dependabot

dependency-graph conda dependabot dependency-graph-api

TypeScript

•

MIT License

•3•1•0•2•Updated

May 14, 2026

awesome-secret-scanning

Public

A curated list of awesome GitHub Advanced Security secret scanning resources.

awesome awesome-list secret-scanning

awesome awesome-list secret-scanning github-advanced-security

PowerShell

•

MIT License

•4•16•1•0•Updated

May 14, 2026

SARIF-viewer

Public

JetBrains IDE plugin for displaying SARIF from GHAS or from a local file

Kotlin

•

MIT License

•5•10•3•8•Updated

May 12, 2026

github-sbom-toolkit

Public

Gather SBOMs from the GitHub Dependency Graph and report matches with packages, such as malware advisories from the GitHub Advisory Database or PURLs of your ch…

malware dependency-graph dependencies

malware dependency-graph dependencies supplychain purl sbom advanced-security ghas

TypeScript

•

MIT License

•5•17•0•6•Updated

May 12, 2026

codeql-extractor-action

Public

specify a CodeQL extractor to be used in your workflows as an author of an Extractor.

Rust

•

MIT License

•0•2•1•11•Updated

May 11, 2026

maven-dependency-submission-action

Public

GitHub Action for submitting Maven dependencies

dependency-submission

TypeScript

•

MIT License

•38•58•19•7•Updated

May 11, 2026

component-detection-dependency-submission-action

Public

This GitHub Action runs the microsoft/component-detection library to automate dependency extraction at build time.

github-actions dependency-submission

TypeScript

•

MIT License

•31•21•7•7•Updated

May 9, 2026

slack-secret-scanning-notifier-azure-function

Public

Slack notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function

slack-bot secret-scanning github-advanced-security

TypeScript

•

MIT License

•2•3•3•1•Updated

May 8, 2026

teams-secret-scanning-notifier-azure-function

Public

Microsoft Teams notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function

github-app security-team azure-function

github-app security-team azure-function secret-scanning github-advanced-security microsoft-teams-bot

TypeScript

•

MIT License

•1•8•1•1•Updated

May 8, 2026

mrva-prep

Public

CLI tool that optimizes MRVA SQLite databases for the Blazor WebAssembly reports UI

Go

•

MIT License

•0•1•0•0•Updated

May 6, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advanced Security

All

All

101 repositories

set-codeql-language-matrix

codeql-development-mcp-server

dismiss-alerts

brew-dependency-submission-action

secret-scanning-tools

cocoapods-dependency-submission-action

sarif-toolkit

codeql-sap-js

reusable-workflows

dependabot-kev-action

codeql-sarif-security-standard-annotator

secret-scanning-review-action

codeql-development-template

policy-as-code

ghas-reviewer-app

advanced-security-material

enterprise-security-team

sample-javascript-monorepo

ghas-to-csv

codeql-bundle

conda-dependency-submission-action

awesome-secret-scanning

SARIF-viewer

github-sbom-toolkit

codeql-extractor-action

maven-dependency-submission-action

component-detection-dependency-submission-action

slack-secret-scanning-notifier-azure-function

teams-secret-scanning-notifier-azure-function

mrva-prep

All

All

Repositories list

101 repositories