Yelp / detect-secrets
An enterprise friendly way of detecting and preventing secrets in code.
☆3,831Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for detect-secrets
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆10,666Updated this week
- Tfsec is now part of Trivy☆6,718Updated last month
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆1,916Updated 4 months ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆6,259Updated this week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,013Updated this week
- Find, verify, and analyze leaked credentials☆17,302Updated this week
- Protect and discover secrets using Gitleaks 🔑☆17,977Updated 2 weeks ago
- A vulnerability scanner for container images and filesystems☆8,838Updated this week
- Multi-Cloud Security Auditing Tool☆6,740Updated last month
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆4,956Updated this week
- The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in productio…☆9,158Updated last month
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.☆3,841Updated last year
- A vault for securely storing and accessing AWS credentials in development environments☆8,516Updated 3 months ago
- Vulnerability Static Analysis for Containers☆10,367Updated this week
- OpenSSF Scorecard - Security health metrics for Open Source☆4,604Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆23,729Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,764Updated 8 months ago
- Supply-chain Levels for Software Artifacts☆1,555Updated this week
- Simple and flexible tool for managing secrets☆17,034Updated this week
- A service that analyzes docker images and scans for vulnerabilities☆1,587Updated last year
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,095Updated this week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,399Updated this week
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆808Updated last year
- Quick and Easy server testing/validation☆5,615Updated this week
- Cloud Native Runtime Security☆7,404Updated this week
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆2,704Updated this week
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,005Updated 4 months ago
- Open source vulnerability DB and triage service.☆1,540Updated this week
- 🥑 Language focused docker images, minus the operating system.☆19,089Updated this week