SpectralOps / vscode-extensionLinks
Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations
☆19Updated 2 years ago
Alternatives and similar repositories for vscode-extension
Users that are interested in vscode-extension are comparing it to the libraries listed below
Sorting:
- Spectral Security Integration into your Github Actions pipeline☆14Updated last year
- preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.☆156Updated 3 years ago
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆129Updated 4 years ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆596Updated 10 months ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆828Updated 10 months ago
- ☆41Updated last month
- Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust☆409Updated 6 months ago
- ☆62Updated this week
- The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.☆889Updated 2 years ago
- Secure shell history commands by finding sensitive data☆225Updated 2 years ago
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆429Updated this week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆955Updated this week
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆59Updated last week
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆767Updated last year
- Measure release insights and recommendations for open-source dependencies. Note: this project is archived.☆10Updated 3 years ago
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆171Updated last year
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆1,033Updated this week
- Detect and validate 500+ types of hardcoded secrets with advanced checks. Use it as a pre-commit hook, GitHub Action, or CLI for proactiv…☆1,906Updated this week
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- Open source compliance tool for development platforms.☆286Updated 2 years ago
- Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning☆97Updated this week
- Audit your Node version for known CVEs and patches☆26Updated 5 months ago
- Overlay is a browser extension helping developers evaluate open source packages before picking them☆225Updated 7 months ago
- Examples of integrating the Snyk CLI into a CI/CD system☆103Updated last year
- boostsecurityio/poutine☆356Updated last week
- A Python client for the Snyk API.☆98Updated last year
- ☆284Updated 3 years ago
- Enrich SBOMs with data from third party services☆214Updated last week
- Interrogate your GitHub resources with the help of the world's greatest detectives: Powerpipe + Steampipe + Sherlock.☆41Updated 5 months ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆889Updated this week