Privado-Inc / privado-cli
Interface to initiate code scan with Privado to identify data flows and privacy issues
☆15Updated 10 months ago
Alternatives and similar repositories for privado-cli:
Users that are interested in privado-cli are comparing it to the libraries listed below
- Open Source Static Scanning tool to detect data flows in your code, find data security vulnerabilities & generate accurate Play Store Dat…☆515Updated this week
- A security focused static analysis tool for Android and Java applications.☆1,112Updated this week
- Open Source Vulnerability schema.☆190Updated this week
- A privacy and security engineering toolkit: Discover, understand, pseudonymize, anonymize, encrypt and securely share sensitive and perso…☆116Updated 5 months ago
- The Cloud Property Graph is based on a Code Property Graph and tries to connect static code analysis and Cloud runtime assessment.☆22Updated last week
- Feed parsing for language package manager updates☆76Updated last month
- Android security & privacy analysis for the masses☆282Updated last year
- Tool to achieve policy driven vetting of open source dependencies☆251Updated this week
- Auto App Consent for Android Developers (GDPR/CCPA)☆25Updated last year
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆286Updated this week
- Atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆60Updated last week
- εxodus CLI client for local analysis☆78Updated 10 months ago
- Global Security Database☆315Updated 9 months ago
- Open Source Package Analysis☆809Updated 2 weeks ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆104Updated last month
- HideDroid is an Android app that allows the per-app anonymization of collected personal data according to a privacy level chosen by the u…☆197Updated 10 months ago
- App Defense Alliance is now part of the Linux Foundation. The specs listed here are legacy specs part of Google programs. Check out the…☆74Updated 7 months ago
- Automatically assess and score software repositories for supply chain risk.☆93Updated this week
- A compilation of resources in the software supply chain security domain, with emphasis on open source☆304Updated last year
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆465Updated last month
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆73Updated 2 weeks ago
- Low-effort reachability analysis for third-party code vulnerabilities.☆20Updated last year
- Packj stops Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in y…☆660Updated 9 months ago
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated 10 months ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆141Updated 10 months ago
- #PAAD: PhoneAccount Abuse Detector for Android 6.0+ devices☆107Updated 2 years ago
- Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.☆336Updated last week
- GuardDog is a CLI tool to Identify malicious PyPI and npm packages☆666Updated this week
- Description here☆12Updated 2 years ago
- Advisory database for Python packages published on pypi.org☆271Updated this week