ForAllSecure / mapi-actionLinks
π€ Run a Mayhem for API scan in GitHub Actions
β24Updated 7 months ago
Alternatives and similar repositories for mapi-action
Users that are interested in mapi-action are comparing it to the libraries listed below
Sorting:
- This project is deprecated. Use https://github.com/returntocorp/semgrep insteadβ73Updated last year
- β13Updated last week
- Mayhem example templates for programming languages and fuzzers that you love!β33Updated last year
- Compare vulnerability scanners results (to make them better!)β16Updated this week
- β50Updated 2 weeks ago
- β29Updated last week
- ZAP Management Scriptsβ23Updated 3 weeks ago
- Documentation of Semgrep: a fast, open-source, static analysis tool.β41Updated last week
- A place to systematically store software bill of materials (SBOM) documents.β46Updated 2 years ago
- Proof-of-concept SLSA provenance generator for GitHub Actionsβ100Updated 2 years ago
- Collect, curate, and communicate relevant security metrics for open source projects.β63Updated last year
- An auto-scoring capture-the-flag game focusing on TOCTOU vulnerabilitiesβ20Updated 4 years ago
- Precaution CLI - command line static application security testing toolβ24Updated last week
- A tool which tries to map CVEs from NVD to packages in supported ecosystems (Maven, NPM, PyPI).β12Updated 2 years ago
- Securing Alice's, Bob's and Carl's software supply chain using in-totoβ93Updated 2 weeks ago
- sbomify is an SBOM management platform.β24Updated this week
- A specification for signing methods and formats used by Secure Systems Lab projects.β79Updated 9 months ago
- A draft standard for communicating a cryptographic record of build inputs for software artifacts.β26Updated 2 months ago
- A TUF repository and signing toolβ37Updated this week
- A community collection of security reviews of open source software components.β95Updated last year
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulnerβ¦β48Updated last week
- javaspringvulny - a Spring Boot web application built wrong on purposeβ19Updated 2 months ago
- A CLI tool to analyze the behavior of your dependencies using listen.devβ12Updated last week
- Report missing advisories and corrections on OSS Indexβ17Updated 2 years ago
- Security scanning & static analysis toolβ94Updated 8 months ago
- Sigstore's Protocol Buffer specificationsβ33Updated this week
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and discβ¦β122Updated 5 months ago
- Generate a score for your sbom to understand if it will actually be useful.β230Updated 10 months ago
- Enrich SBOMs with data from third party servicesβ176Updated 2 months ago
- β29Updated 4 months ago