sha-pinning

Here are 4 public repositories matching this topic...

starhaven-io / pinprick

Pin your GitHub Actions. Prick holes in their supply chain security.

rust cli security cicd appsec software-supply-chain devsecops github-actions rust-cli slsa supply-chain-security dependency-pinning sha-pinning

Updated Jun 10, 2026
Rust

actver-dev / skills

Sponsor

Star

ActVer plugin & skills for AI coding agents such as Claude Code, Cursor, and Copilot — GitHub Actions version lookup, SHA pinning, and workflow security auditing

security skills mcp cursor copilot ai-agents github-actions claude-code sha-pinning actver

Updated Mar 28, 2026
Shell

ollieb89 / actions-lockfile-generator

Star

Pin GitHub Action tags to full commit SHAs and generate auditable lockfiles to prevent supply chain attacks

security ci-cd developer-tools lockfile devsecops github-actions supply-chain-security workflow-security action-pinning sha-pinning

Updated Mar 22, 2026
TypeScript

0-draft / sigil

Star

secure-by-default github template for oss: signed commits, sha-pinned actions, slsa v1.0 provenance, sigstore keyless signing, npm oidc publishing.

Updated Jun 9, 2026
Shell

Improve this page

Add a description, image, and links to the sha-pinning topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the sha-pinning topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

sha-pinning

Here are 4 public repositories matching this topic...

starhaven-io / pinprick

actver-dev / skills

ollieb89 / actions-lockfile-generator

0-draft / sigil

Improve this page

Add this topic to your repo