Checkmarx / ast-vscode-extensionLinks
The Checkmarx One Visual Studio Code plugin (extension) enables you to import results from a Checkmarx One scan directly into your VS Code console. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.
☆19Updated this week
Alternatives and similar repositories for ast-vscode-extension
Users that are interested in ast-vscode-extension are comparing it to the libraries listed below
Sorting:
- ☆422Updated 3 years ago
- A GitHub Action for running the ZAP API scan☆69Updated last week
- OWASP Foundation Web Respository☆101Updated last month
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆155Updated last year
- Checkmarx Scan and Result Orchestration☆99Updated last month
- Vulnerable Terraform Projects - Fork of https://github.com/bridgecrewio/terragoat☆17Updated last year
- Awesome resources about Security in Kubernetes☆46Updated 3 years ago
- A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.☆111Updated last year
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆81Updated last month
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆373Updated 4 months ago
- ☆560Updated last week
- OWASP Kubernetes security and compliance tool [WIP]☆108Updated 2 years ago
- ☆142Updated last month
- A GitHub Action for running the ZAP Baseline scan☆349Updated last week
- Tool for auditing RBACs in Kubernetes☆226Updated 2 years ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆293Updated last year
- A utility to (re-)import findings and language data into DefectDojo☆43Updated last year
- ☆269Updated 3 weeks ago
- A comprehensive list of software composition analysis tools.☆162Updated 3 months ago
- Count distinct contributor of Snyk watched repos across several SCM☆32Updated 2 weeks ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆863Updated 2 years ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆105Updated 2 years ago
- OWASP Kubernetes Security Testing Guide☆41Updated last month
- Publishes BOMs to Dependency-Track from GitHub Actions☆58Updated last year
- ☆106Updated 2 months ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆40Updated 4 years ago
- Examples of Custom Secret Scanning Patterns for use with GitHub Secret Protection/Advanced Security☆170Updated last week
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆278Updated last year
- Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, wor…☆484Updated 4 years ago
- ☆124Updated 8 months ago