Checkmarx / chainalert-github-actionLinks
scans popular packages and alerts in cases there is suspicion of an account takeover
☆42Updated 3 years ago
Alternatives and similar repositories for chainalert-github-action
Users that are interested in chainalert-github-action are comparing it to the libraries listed below
Sorting:
- Mitigate security concerns of Dependency Confusion supply chain security risks☆47Updated 2 years ago
- Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git☆94Updated last week
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆38Updated 3 years ago
- GitHub action to generate a CycloneDX SBOM for Node.js☆22Updated 5 months ago
- Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks☆58Updated 3 years ago
- Runtime Security Solution for your CI/CD Pipeline☆104Updated 2 weeks ago
- Generate a score for your sbom to understand if it will actually be useful.☆230Updated 10 months ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆96Updated 4 months ago
- boostsecurityio/poutine☆303Updated this week
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆155Updated 10 months ago
- Sharing software supply chain security open source projects☆50Updated 2 years ago
- An open-source collection of API key rotation tutorials.☆70Updated 3 months ago
- Tool to export test reports from the Snyk CLI to HTML.☆97Updated this week
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆73Updated last year
- Exports vulnerability scan data from the Checkmarx SAST platform for use in analytical tools.☆19Updated 7 months ago
- A community collection of security reviews of open source software components.☆95Updated last year
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆32Updated 5 months ago
- Awesome Snyk community contributions, champions, integrations, blogs, tools and more 💜☆47Updated 3 years ago
- Overlay is a browser extension helping developers evaluate open source packages before picking them☆225Updated last week
- OWASP Foundation Web Respository☆96Updated 5 months ago
- This open-source project tracks RED-LILI's activity over time as there are evidence the actor is still active. All information provided h…☆11Updated 2 years ago
- ☆369Updated last year
- A tool to check the security settings of Github Organizations.☆71Updated 2 years ago
- Protect against subdomain takeover☆92Updated last year
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆315Updated this week
- ☆74Updated 4 years ago
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆27Updated 7 months ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆120Updated 2 weeks ago
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆273Updated 9 months ago
- The source files and tools needed to build the OWASP Cornucopia decks in various languages☆69Updated this week