The first autonomous source code posture risk score tool.
Sentra is a collection of Perl modules designed to help gain speed and increase the maturity of security processes. These modules can be used independently or together to analyze GitHub repositories, manage Dependabot alerts, and send notifications via Slack.
| Name | Description |
|---|---|
| DependabotMetrics | Fetches and analyzes Dependabot alerts from GitHub repositories of a specified organization. |
| SearchFiles | Checks repositories for specific files and last update times. |
| SlackWebhook | An output forwarder for sending messages to Slack via webhooks. |
# Clone the repository
$ git clone https://github.com/instriq/sentra && cd sentra
# Install Perl module dependencies
$ cpanm --installdeps .$ perl sentra.pl
Sentra v0.0.1
Core Commands
==============
Command Description
------- -----------
-o, --org Specify the name of the organization
-t, --token Set the GitHub Token to use during actions
-w, --webhook Set the webhook address for Slack
-m, --message Message to send via Slack webhook
-mt, --maintained Check last commit date of repositories
-d, --dependency Check for dependabot.yaml file in repositories
-p, --per_page Set the number of items per page in API requests (default: 100)
Your contributions and suggestions are heartily ♥ welcome. See here the contribution guidelines. Please, report bugs via issues page and for security issues, see here the security policy. (✿ ◕‿◕)
This work is licensed under MIT License.