SpectralOps / vscode-extensionLinks
Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations
☆19Updated 2 years ago
Alternatives and similar repositories for vscode-extension
Users that are interested in vscode-extension are comparing it to the libraries listed below
Sorting:
- Spectral Security Integration into your Github Actions pipeline☆14Updated last year
- preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.☆156Updated 3 years ago
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆129Updated 4 years ago
- Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust☆409Updated 5 months ago
- Friends don't let friends leak secrets on their terminal window☆105Updated 4 years ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆826Updated 9 months ago
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆171Updated 11 months ago
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆940Updated 3 weeks ago
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆424Updated this week
- Allows you to manage configuration and secrets from multiple provider while masking the secrets at the deployment☆71Updated 3 years ago
- Secure shell history commands by finding sensitive data☆225Updated 2 years ago
- ☆62Updated this week
- A GitHub Action to suggest removal of non-organization members from CODEOWNERS files☆136Updated last week
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆261Updated this week
- Enrich SBOMs with data from third party services☆211Updated 3 weeks ago
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆201Updated this week
- An awesome list of OSS developer-first security tools☆186Updated 7 months ago
- Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis☆50Updated 2 months ago
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning☆97Updated last week
- A web based tool for working with CycloneDX BOMs☆43Updated last month
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆768Updated last year
- A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration☆335Updated last month
- Measure release insights and recommendations for open-source dependencies. Note: this project is archived.☆10Updated 3 years ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated 3 weeks ago
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆558Updated 7 months ago
- boostsecurityio/poutine☆354Updated this week
- Generate SBOMs with gh CLI☆197Updated 7 months ago
- A collection of diagramming tools to help create DevOps/DevSecOps reference architectures☆78Updated 2 years ago
- ValidIaC combines the best open-source tools to help ensure Infrastructure-as-Code best practices, hygiene & security.☆234Updated 8 months ago