pinact - pin GitHub Actions to commit SHAs
CLI that edits GitHub workflow and composite action files to pin every action and reusable workflow to a commit SHA, with version annotations and update support. Plugs the supply-chain hole left by tag-only references.
This entry doesn't have a long-form writeup yet. Follow the source link above for the full context.
Featured in
Go CLI tools for developers and operators
Single-binary Go CLIs and TUIs across observability, git, shells, and DevOps - the tools that make Go the practical default for distribution-friendly CLIs.
Security tools for AI coding agents
Sandboxes, scanners, proxies, and governance toolkits that keep autonomous agents from doing damage.
DevOps and infrastructure tools
CLIs, port-forwarders, backup wrappers, and templating tools for the boring-but-load-bearing parts of running infrastructure.
Related entries
cloudlist - cloud asset inventory CLI
ProjectDiscovery CLI that lists assets across multiple cloud providers from one config. Useful as a recon and inventory step in security workflows.
Kontext CLI - credential broker for AI coding agents
Go CLI that brokers GitHub, Stripe, and database credentials to coding agents per-session with audit trails, replacing copy-pasted .env keys with scoped tokens.
park - pause a process and free its TCP port
Go CLI that suspends a running process and releases its TCP port, then resumes it later with the same PID and memory intact. Ctrl+Z for long-running servers.
pgschema - declarative Postgres schema CLI
Terraform-style declarative schema migration tool for Postgres with multi-tenant support and an explicitly agent-friendly interface. Lets agents propose and apply schema diffs without hand-rolling migrations.