JosephTLucas / lintMLLinks
A security-first linter for code that shouldn't need linting
☆16Updated last year
Alternatives and similar repositories for lintML
Users that are interested in lintML are comparing it to the libraries listed below
Sorting:
- ☆112Updated 2 years ago
- An interactive CLI application for interacting with authenticated Jupyter instances.☆54Updated 3 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 5 months ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 9 months ago
- ☆39Updated last year
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆31Updated 3 months ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆134Updated 4 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆42Updated last year
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- ☆59Updated 2 years ago
- LLM Testing Findings Templates☆72Updated last year
- A GitHub Actions Supply Chain CTF / Goat☆24Updated this week
- Spec and Sample code for Identifying and Reducing Permission Explosion☆12Updated 2 years ago
- Manager of third-party sources of Semgrep rules 🗂☆87Updated last year
- Semgrep-based Policy Controller for Kubernetes☆47Updated 4 months ago
- Blogpost series showcasing interesting cloud - web app security bugs☆49Updated 2 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆66Updated 2 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆40Updated 8 months ago
- ☆50Updated last year
- ☆10Updated 3 years ago
- Data about all known supply-chain attacks through history☆58Updated 3 months ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆32Updated 10 months ago
- Secure Jupyter Notebooks and Experimentation Environment☆80Updated 6 months ago
- An AWS metadata enumeration tool by Plerion☆98Updated last year
- Automated vulnerability discovery and annotation☆67Updated last year
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Updated last year
- boostsecurityio/lotp☆132Updated 4 months ago
- Scan your account for the use of untrusted AMIs☆28Updated this week
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆119Updated 2 years ago