Yelp / detect-secretsLinks
An enterprise friendly way of detecting and preventing secrets in code.
☆4,324Updated 8 months ago
Alternatives and similar repositories for detect-secrets
Users that are interested in detect-secrets are comparing it to the libraries listed below
Sorting:
- Tfsec is now part of Trivy☆6,932Updated last month
- OpenSSF Scorecard - Security health metrics for Open Source☆5,167Updated last week
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.☆3,928Updated 9 months ago
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆2,050Updated last week
- Bandit is a tool designed to find common security issues in Python code.☆7,519Updated last week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,640Updated this week
- Vulnerability Static Analysis for Containers☆10,877Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,969Updated last year
- Find secrets with Gitleaks 🔑☆24,148Updated 2 weeks ago
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,864Updated last week
- Dockerfile linter, validate inline bash, written in Haskell☆11,754Updated 2 weeks ago
- Prevents you from committing secrets and credentials into git repositories☆13,077Updated 2 months ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,534Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,027Updated this week
- Multi-Cloud Security Auditing Tool☆7,466Updated 2 months ago
- A service that analyzes docker images and scans for vulnerabilities☆1,591Updated 2 years ago
- Code signing and transparency for containers and binaries☆5,470Updated this week
- Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.☆1,923Updated last week
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start☆3,185Updated 11 months ago
- The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in productio…☆9,553Updated last year
- Simple and flexible tool for managing secrets☆20,101Updated last week
- Find, verify, and analyze leaked credentials☆23,660Updated last week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,197Updated 2 weeks ago
- Cloud Security Posture Management (CSPM)☆3,651Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆30,274Updated this week
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆856Updated 2 years ago
- Cloud Native Runtime Security☆8,443Updated this week
- Terraform Pull Request Automation☆8,684Updated this week
- Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.☆9,135Updated last week
- A vulnerability scanner for container images and filesystems☆11,088Updated this week