Skip to content
@advanced-security

GitHub Advanced Security

Home of Advanced Security solutions that we can share with the world
README.md

Welcome to the GitHub Advanced Security Organisation! 👋

This organisation contains open source initiatives created by developers at GitHub (and around the world) to show the art of the possible with advanced security. :octocat: 💻

GitHub Advanced Security consists of CodeQL, Code Scanning, Secret Scanning, Security Overview and Dependency Review. A core principle of each of these solutions is being automated and integrable via API's and Webhooks. In this organisation, you will find starter kits, actions, custom queries and bundles, scripts and full-blown solutions that show off how you can integrate into GitHub Advanced Security (GHAS).

In comparison to the official GitHub organisation, a lot of the software you find here is developed as a best effort. These are open-source solutions developed outside of core responsibilities but with the aim for you to leverage and consume as you would any standard open-source software. 👐

We love contributions and feedback from you! So please feel free to open pull requests and issues as you can! 💕

Welcome and we hope what you find here useful 🙇

Pinned Loading

  1. awesome-codeql awesome-codeql Public

    A curated list of awesome CodeQL resources.

    58 7

  2. awesome-secret-scanning awesome-secret-scanning Public

    A curated list of awesome GitHub Advanced Security secret scanning resources.

    13 2

  3. secret-scanning-custom-patterns secret-scanning-custom-patterns Public

    Examples of Custom Secret Scanning Patterns for use with GitHub Secret Protection/Advanced Security

    HTML 168 29

  4. awesome-dependabot awesome-dependabot Public

    A curated list of awesome Dependabot (and related software supply chain) resources.

    6 3

  5. advanced-security-material advanced-security-material Public

    Shell 76 25

Repositories

Showing 10 of 95 repositories
  • dismiss-alerts Public

    Dismiss GitHub Code Scanning alerts from SARIF suppression data

    advanced-security/dismiss-alerts’s past year of commit activity
    Java 18 MIT 4 1 6 Updated Dec 17, 2025
  • reusable-workflows Public

    Advanced Security Reusable GitHub Actions Workflows

    advanced-security/reusable-workflows’s past year of commit activity
    3 MIT 5 3 3 Updated Dec 17, 2025
  • codeql-extractor-action Public

    specify a CodeQL extractor to be used in your workflows as an author of an Extractor.

    advanced-security/codeql-extractor-action’s past year of commit activity
    Rust 2 MIT 0 1 0 Updated Dec 17, 2025
  • codeql-extractor-iac Public

    CodeQL Extractor, Library, and Queries for Infrastructure as Code

    advanced-security/codeql-extractor-iac’s past year of commit activity
    CodeQL 57 MIT 12 13 2 Updated Dec 17, 2025
  • conda-dependency-submission-action Public

    GitHub Action that scans Conda manifest files and submits their dependencies to GitHub's Dependency Graph,

    advanced-security/conda-dependency-submission-action’s past year of commit activity
    TypeScript 0 MIT 3 0 5 Updated Dec 17, 2025
  • awesome-codeql Public

    A curated list of awesome CodeQL resources.

    advanced-security/awesome-codeql’s past year of commit activity
    58 MIT 7 1 1 Updated Dec 17, 2025
  • enterprise-security-team Public

    Manage a uniform team of security managers for every organization in your enterprise

    advanced-security/enterprise-security-team’s past year of commit activity
    Python 25 MIT 6 0 1 Updated Dec 17, 2025
  • ghas-api-python-scripts Public

    GitHub Advanced Security scripts to interact with parts of the API, driven by a lightweight GitHub API wrapper written in Python

    advanced-security/ghas-api-python-scripts’s past year of commit activity
    Python 4 MIT 0 0 1 Updated Dec 16, 2025
  • ghas-to-csv Public

    Play with GHAS API to provide posture data over time

    advanced-security/ghas-to-csv’s past year of commit activity
    Python 40 MIT 18 2 1 Updated Dec 16, 2025
  • remap-sarif Public

    Remap a SARIF file with sourcemaps

    advanced-security/remap-sarif’s past year of commit activity
    Python 5 MIT 5 2 1 Updated Dec 16, 2025
View all repositories

Top languages

Loading…

Most used topics

Loading…