SecurityββSolid
SafeWeave β 8 security scanners as an MCP server inside your AI editor
MCP-native security scanning inside Cursor beats switching to Snyk dashboards.
Solve My ProblemSlick
techxeni
202mo ago
Back to browse
GitHub Repository
π¦ββ¬ Security scanner for GitHub Actions pipelines
14 starsGo
Muninn - 8 Security scanners in one GitHub Action
by sg0nzalez83Β·Jun 20, 2026Β·1 pointΒ·0 comments
AI Analysis
ββSolidSolve My ProblemSlick
Cross-scanner CVE deduplication keyed on advisory ID saves real triage time.
Strengths
- β’Deduplication collapses duplicate CVEs from OSV and Trivy into single findings.
- β’Single uses: line replaces managing 8 separate scanner actions.
- β’Unified SARIF upload to GitHub Security tab from all scanners.
Weaknesses
- β’Orchestration layer adds no new detection capability beyond upstream tools.
- β’AGPL license may block enterprise adoption in some organizations.
Category
Target Audience
DevOps engineers, security teams using GitHub Actions
Similar To
Snyk Β· GitGuardian Β· Security Code Scan
Similar Projects
Developer ToolsβββBanger
AccessiGuard β Free WCAG Scanner with CLI and GitHub Action
Accessibility audits in 30 seconds, free CLI, beats $500+ paid audits with GitHub Actions.
Solve My ProblemShip It
PrimeStark
104mo ago
SecurityβββBanger
Aidevshield NPM audit for AI coding tool workflows
Scans Cursor/Cline/GitHub Actions for prompt injection and supply chain attacksβaidevshield catches real exploits.
Solve My ProblemBig Brain
GrimLabs
103mo ago
SecurityβββBanger
Abom β Actions Bill of Materials for GitHub Actions Supply Chains
SBOMs for CI/CD pipelines catch transitive action deps that grep misses entirely.
Solve My ProblemDark Horse
julietsecurity
212mo ago
Developer ToolsββSolid
Gha-outrunner β Ephemeral GitHub Actions runners without Kubernetes
Ephemeral CI runners without Kubernetes overhead for bare metal and macOS Apple Silicon.
Solve My ProblemNiche Gem
psubocz
102mo ago
SecurityββSolid
Ghapin β Tool to pin GitHub Actions to SHAs for supply-chain security
Automates SHA pinning with --comment flag to preserve original tags inline.
Niche GemShip It
theden
202mo ago