Addepar / RedFlagLinks
RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and add reviewers. RedFlag's flexible configuration makes it valuable for any team.
☆155Updated last year
Alternatives and similar repositories for RedFlag
Users that are interested in RedFlag are comparing it to the libraries listed below
Sorting:
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- Cloud Commotion intends to cause chaos to simulate security incidents☆146Updated last year
- Gram is Klarna's own threat model diagramming tool☆327Updated last month
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆98Updated last month
- A full insecure kubernetes application for testing security tools☆90Updated last month
- A tool to uncover undocumented APIs from the AWS Console.☆115Updated 7 months ago
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆66Updated last week
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆133Updated 5 months ago
- Generate datasets of cloud audit logs for common attacks☆224Updated last year
- cloudgrep is grep for cloud storage☆325Updated 9 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Updated 10 months ago
- AWS honey token manager☆89Updated last year
- ☆52Updated last year
- ☆193Updated 7 months ago
- ☆378Updated last year
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆117Updated this week
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆167Updated 3 weeks ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆42Updated 2 years ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated 2 years ago
- ☆166Updated last month
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…☆109Updated this week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆176Updated 7 months ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆187Updated this week
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆46Updated last month
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆41Updated 11 months ago
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.☆140Updated last week
- boostsecurityio/poutine☆345Updated last week
- Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adop…☆75Updated last year
- AI featured threat modeling and security review action☆45Updated last year
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆173Updated last year