Alternatives and similar repositories for ast-vscode-extension

Users that are interested in ast-vscode-extension are comparing it to the libraries listed below

• Checkmarx / 2ms
  Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
  ☆94Updated last week
• snyk-labs / github-actions-scanner
  Scans your Github Actions for security issues
  ☆77Updated last week
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆38Updated 3 years ago
• TinderSec / gh-workflow-auditor
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆156Updated 10 months ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆56Updated last month
• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆349Updated last month
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆97Updated 5 months ago
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆128Updated 3 months ago
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆76Updated 2 years ago
• Checkmarx / ast-cli
  A CLI project wrapping application security testing (AST) APIs
  ☆54Updated this week
• primait / nuvola
  ☆140Updated last week
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆137Updated 3 years ago
• ReversecLabs / IceKube
  ☆179Updated 2 months ago
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆99Updated last week
• bancolombia / devsecops-engine-tools
  Toolchain for the evaluation of different devsecops practices
  ☆34Updated this week
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆50Updated 2 years ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆306Updated 2 weeks ago
• advanced-security / codeql-extractor-iac
  CodeQL Extractor, Library, and Queries for Infrastructure as Code
  ☆50Updated this week
• madhuakula / hacker-container
  The Swiss Army Container for Cloud Native Security. Container with all the list of useful tools/commands while hacking and securing Conta…
  ☆282Updated 2 years ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆293Updated 5 months ago
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆70Updated 3 weeks ago
• bin3xish477 / ghast
  GHAST (GitHub Actions Static Analysis Tool) is a tool to analyze the security posture of your GitHub Actions and its surrounding environm…
  ☆20Updated last year
• OWASP / www-project-devsecops-verification-standard
  OWASP Foundation Web Respository
  ☆45Updated last month
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆105Updated last year
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆187Updated 3 months ago
• hysnsec / awesome-sca
  A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.
  ☆107Updated 7 months ago
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆55Updated 2 years ago
• ReversecLabs / cloud-wiki
  A public cloud security knowledgebase - https://www.secwiki.cloud/
  ☆51Updated 8 months ago
• cider-security-research / top-10-cicd-security-risks
  ☆416Updated 2 years ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year