OWASP/www-project-top-10-ci-cd-security-risks external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

OWASP/www-project-top-10-ci-cd-security-risks

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/OWASP/www-project-top-10-ci-cd-security-risks)

Close

OWASP / www-project-top-10-ci-cd-security-risksView on GitHubMore

• External links
• Readme badge

OWASP Foundation Web Respository

☆104Dec 22, 2025Updated 4 months ago

Alternatives and similar repositories for www-project-top-10-ci-cd-security-risks

Users that are interested in www-project-top-10-ci-cd-security-risks are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cider-security-research / top-10-cicd-security-risks

  View on GitHub
  ☆425Jan 18, 2023Updated 3 years ago
• Abdelrahmanamhawy / Frida-Android-Scripts

  View on GitHub
  Hi, these are some scripts that i use whenever a mobile pentest task comes up . Hope they would be helpful for someone
  ☆13Dec 14, 2023Updated 2 years ago
• slsa-framework / slsa-proposals

  View on GitHub
  SLSA Proposals
  ☆12Jan 29, 2024Updated 2 years ago
• dibsy / Recipies-Of-A-Jenkins-Hacker

  View on GitHub
  Jenkins Security Research or Hacking Jenkins ;)
  ☆12Dec 10, 2024Updated last year
• OWASP / www-project-mobile-app-security

  View on GitHub
  OWASP Foundation Web Repository
  ☆18Feb 19, 2026Updated 2 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• rewanthtammana / sigstore-the-easy-way

  View on GitHub
  Software signing just got easier
  ☆20Dec 11, 2023Updated 2 years ago
• OWASP / www-project-kubernetes-top-ten

  View on GitHub
  OWASP Foundation Web Respository
  ☆613Mar 24, 2026Updated last month
• devsecopsmaturitymodel / DevSecOps-MaturityModel

  View on GitHub
  ☆575Updated this week
• arall / vulnerabilities

  View on GitHub
  Examples of different vulnerabilities, in a variety of languages, shapes and sizes.
  ☆29Mar 7, 2024Updated 2 years ago
• OWASP / www-project-top-10-privacy-risks

  View on GitHub
  OWASP Foundation Web Respository
  ☆17Jun 1, 2022Updated 3 years ago
• dirkjanm / family-of-client-ids-research

  View on GitHub
  Research into Undocumented Behavior of Azure AD Refresh Tokens
  ☆13Oct 27, 2023Updated 2 years ago
• fortify / ssc-restapi-client

  View on GitHub
  Communicate with Fortify Software Security Center through REST API in java, a swagger generated client
  ☆19Apr 7, 2026Updated last month
• cider-security-research / cicd-goat

  View on GitHub
  A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
  ☆2,227Jul 14, 2024Updated last year
• safedep / xbom

  View on GitHub
  Generate xBOMs enriched with AI, SaaS, Crypto and more using Static Code Analysis
  ☆29Jan 22, 2026Updated 3 months ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• erickrazr / OWASP-Top-10-CICD-Security-Risks

  View on GitHub
  OWASP Foundation Web Respository
  ☆12Dec 21, 2022Updated 3 years ago
• Y3llowDuck / OSEP

  View on GitHub
  Tools that can be useful for OSEP exam and PEN300 studies.
  ☆88Mar 14, 2026Updated last month
• Slayer0x / Cloud-Detective

  View on GitHub
  Cloud subdomains identification tool
  ☆62Apr 15, 2025Updated last year
• jvehent / AutOssec

  View on GitHub
  Ossec cookbook for Chef, with secure & automated key management
  ☆21Jun 13, 2013Updated 12 years ago
• dr34mhacks / Openapi-Schema-Builder

  View on GitHub
  This tool is designed to seamlessly convert Postman collections into OpenAPI schemas. This conversion is essential for API security testi…
  ☆12Sep 3, 2024Updated last year
• tesera / terraform-modules

  View on GitHub
  Collection of terraform modules
  ☆12May 8, 2021Updated 5 years ago
• invictus-ir / IOCs

  View on GitHub
  Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more
  ☆30Mar 31, 2026Updated last month
• alvise72 / DroidStack

  View on GitHub
  Free Android OpenStack Client
  ☆11Oct 31, 2016Updated 9 years ago
• federicodotta / semgrep-rules

  View on GitHub
  A collection of my Semgrep rules
  ☆51Jul 4, 2023Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• jgamblin / KEV_EPSS

  View on GitHub
  KEV EPSS Data
  ☆33Updated this week
• owaspsamm / sammwise

  View on GitHub
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆81Mar 20, 2023Updated 3 years ago
• humanmade / hashicorp-vault

  View on GitHub
  HashiCorp Vault integration plugin for WordPress
  ☆12Mar 18, 2024Updated 2 years ago
• cisagov / skeleton-generic

  View on GitHub
  A generic skeleton project for quickly getting a new cisagov project started.
  ☆18Apr 29, 2026Updated last week
• JosephTLucas / lintML

  View on GitHub
  A security-first linter for code that shouldn't need linting
  ☆19Sep 12, 2023Updated 2 years ago
• lenisha / vsts-terraform-ansible

  View on GitHub
  VSTS Pipeline demonstrating Terraform and Ansible
  ☆11May 28, 2018Updated 7 years ago
• SecureHats / security-copilot

  View on GitHub
  This GitHub repository contains lessons for developing Microsoft Security CoPilot plugins
  ☆20May 15, 2024Updated last year
• dpgoetz / sos

  View on GitHub
  Swift Origin Server
  ☆32Jul 21, 2015Updated 10 years ago
• chainguard-dev / clank

  View on GitHub
  Simple tool that allows you to detect imposter commits in GitHub Actions workflows.
  ☆30Dec 17, 2024Updated last year
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• omninonsense / kustomize-sopsgenerator

  View on GitHub
  A Kustomize generator plugin that reads SOPS encoded files and converts them to Kubernetes Secrets
  ☆10Oct 1, 2021Updated 4 years ago
• lacioffi / GCP-pentest-lab

  View on GitHub
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆34Nov 12, 2025Updated 5 months ago
• skelsec / winsspi

  View on GitHub
  Windows SSPI wrapper in prue python
  ☆15Nov 29, 2023Updated 2 years ago
• redr0nin / Signal-DLL-Hijacking

  View on GitHub
  DLL Malware for Signal Desktop. Now utilizes missing dbghelp.dll since Signal patched cryptbase.
  ☆14Jan 24, 2025Updated last year
• kmcquade / OWASP-YouTube-2021

  View on GitHub
  Deliberately vulnerable AWS resources for security assessment demos
  ☆32Aug 20, 2022Updated 3 years ago
• appsecpipeline / AppSecPipeline-Specification

  View on GitHub
  AppSecPipeline Specification for DevOps automation.
  ☆40Dec 8, 2022Updated 3 years ago
• 0xDynamo / Prepnote

  View on GitHub
  This command prepares your project directory for "Mynewproject" in the showcase directory and "mynewproject" in the boxes directory, incl…
  ☆17Dec 15, 2024Updated last year