Skip to content
#

semgrep

Here are 4 public repositories matching this topic...

Automated container image scanning pipeline using GitHub Actions and Trivy. Builds Docker images, enforces a High/Critical vulnerability gate, and generates HTML reports, SBOMs, and SAST findings. Demonstrates DevSecOps, supply chain security, and CI-based risk controls.

  • Updated Nov 27, 2025
  • Dockerfile

Improve this page

Add a description, image, and links to the semgrep topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the semgrep topic, visit your repo's landing page and select "manage topics."

Learn more