This repository shows you how to build up an enterprise-ready DevSecOps Pipeline with GitHub. It utilises the SCA, SAST, DAST scans with different open source tools such as snyk, dependency check, trivy and Github advanced security configurations such as Dependabot with specific and general rules, CodeQL analysis , Secrets scan, secret protection, push protection and othersfor creating a secure CI and CD workflow during build into main branch on every change.
Thanks for the Base templates, credits to @romanoroth/GitHubDevSecOps:main.