getplumber/plumber

Pipelines

Track releases GitHub

Go Latest v0.3.43 · 14h ago Security brief →

Features

Scans CI/CD pipelines for compliance across GitLab and GitHub Actions
Uses a single Rego policy engine with one `.plumber.yaml` config per provider
Supports 14 GitLab‑CI controls and 15 GitHub‑Actions controls

Recent releases

View all 116 releases →

No immediate action

v0.3.43 Bug fix 14h

Parser missing entry fix

Open

No immediate action

v0.3.42 Bug fix 15h

Fixes 301/309 handling

Open

Review required

v0.3.39 New feature 19h

Auth

gitleaks secret detection

Open

No immediate action

v0.3.33 New feature 1d

pull-request-target-with-head-checkout

Open

No immediate action

v0.3.29 Bug fix 2d

Fold Docker Hub aliases

Open

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Releases

View all →

Releases per month

Cadence 2.0 / wk

Last release 6d

Release size 5

Tracked 116

Security

Full profile →

Security score 8.1/10

OpenSSF 9.0/10

Open CVEs 0

SECURITY.md Active maintainer

Community

GitHub stars 714

Forks 29

Open issues 45

Open PRs 10

Stars/wk velocity 0.0

About

Stars

714

Forks

Languages

Go Open Policy Agent Shell

View on GitHub

Community & Support

Discord Community

About

Stars

714

Forks

Languages

Go Open Policy Agent Shell

View on GitHub

Community & Support

Discord Community