Addepar / RedFlagLinks
RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and add reviewers. RedFlag's flexible configuration makes it valuable for any team.
☆153Updated 9 months ago
Alternatives and similar repositories for RedFlag
Users that are interested in RedFlag are comparing it to the libraries listed below
Sorting:
- Gram is Klarna's own threat model diagramming tool☆325Updated last month
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- boostsecurityio/poutine☆314Updated last week
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆130Updated 3 months ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated last year
- A tool to uncover undocumented APIs from the AWS Console.☆113Updated 4 months ago
- A full insecure kubernetes application for testing security tools☆89Updated 4 months ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆90Updated 2 weeks ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆174Updated 4 months ago
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆42Updated 2 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated 2 years ago
- ☆189Updated 4 months ago
- ☆372Updated last year
- AI featured threat modeling and security review action☆45Updated 9 months ago
- AWS honey token manager☆87Updated last year
- ☆50Updated 10 months ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆114Updated last week
- A tool for preventing the installation of malicious npm and PyPI packages☆160Updated last week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆40Updated 9 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated 2 weeks ago
- Generate datasets of cloud audit logs for common attacks☆219Updated last year
- Security tool against dependency typosquatting attacks☆54Updated this week
- Semgrep-based Policy Controller for Kubernetes☆47Updated 5 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆143Updated 8 months ago
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…☆97Updated this week
- ☆164Updated this week
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.☆113Updated this week
- Protect against subdomain takeover☆93Updated last month
- boostsecurityio/lotp☆133Updated 5 months ago