Yelp / detect-secretsLinks
An enterprise friendly way of detecting and preventing secrets in code.
☆4,213Updated 5 months ago
Alternatives and similar repositories for detect-secrets
Users that are interested in detect-secrets are comparing it to the libraries listed below
Sorting:
- Tfsec is now part of Trivy☆6,874Updated 3 weeks ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,450Updated this week
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.☆3,916Updated 6 months ago
- Find secrets with Gitleaks 🔑☆23,039Updated 2 weeks ago
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆2,025Updated 3 weeks ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆7,518Updated last week
- Prevents you from committing secrets and credentials into git repositories☆12,941Updated last year
- Vulnerability Static Analysis for Containers☆10,778Updated this week
- Bandit is a tool designed to find common security issues in Python code.☆7,257Updated 2 weeks ago
- Reconnaissance tool for GitHub organizations☆6,068Updated 2 years ago
- A vulnerability scanner for container images and filesystems☆10,504Updated this week
- Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.☆1,886Updated this week
- A service that analyzes docker images and scans for vulnerabilities☆1,586Updated 2 years ago
- Find, verify, and analyze leaked credentials☆20,342Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,925Updated last year
- CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys☆1,167Updated 2 years ago
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,189Updated this week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,533Updated this week
- Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.☆2,038Updated last month
- Dockerfile linter, validate inline bash, written in Haskell☆11,459Updated this week
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start☆2,996Updated 7 months ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆649Updated 2 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆850Updated last year
- DevSecOps, ASPM, Vulnerability Management. All on one platform.☆4,171Updated this week
- Cloud Security Posture Management (CSPM)☆3,586Updated last week
- Simple and flexible tool for managing secrets☆19,230Updated last week
- Some out-of-the-box hooks for pre-commit☆5,978Updated 2 weeks ago
- Quickly clone or backup an entire org/users repositories into one directory - Supports GitHub, GitLab, Bitbucket, and more 🐇🥚☆1,799Updated this week
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆12,627Updated this week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,856Updated last month