From 432e0bf4d0d5372deba1f335f7d3458e80c42346 Mon Sep 17 00:00:00 2001 From: Chuky <45270827+chukyjack@users.noreply.github.com> Date: Fri, 5 Jun 2026 17:25:33 -0500 Subject: [PATCH] Add FedRAMP 20x KSI Action to Static Analysis MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Adds github.com/Boundera/fedramp-20x-ksi-action to the Static Analysis section. MIT-licensed GitHub Action that evaluates Terraform infrastructure against FedRAMP 20x Key Security Indicators (KSIs) and posts results as Check Runs. No vendor backend — runs entirely inside the customer GitHub Actions runner. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index f38a630e..face05c5 100644 --- a/README.md +++ b/README.md @@ -262,6 +262,7 @@ Set up your GitHub Actions workflow with a specific version of your programming - [GraphQL Inspector Action](https://github.com/kamilkisiela/graphql-inspector) - [PowerShell static analysis with PSScriptAnalyzer](https://github.com/devblackops/github-action-psscriptanalyzer) - [Run tfsec, with reviewdog output on the PR](https://github.com/reviewdog/action-tfsec) +- - [Evaluate Terraform Against FedRAMP 20x Key Security Indicators](https://github.com/Boundera/fedramp-20x-ksi-action) #### Testing