Yelp / detect-secretsLinks
An enterprise friendly way of detecting and preventing secrets in code.
☆4,305Updated 8 months ago
Alternatives and similar repositories for detect-secrets
Users that are interested in detect-secrets are comparing it to the libraries listed below
Sorting:
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆2,046Updated last week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,505Updated this week
- Bandit is a tool designed to find common security issues in Python code.☆7,447Updated last week
- Tfsec is now part of Trivy☆6,919Updated last week
- OpenSSF Scorecard - Security health metrics for Open Source☆5,145Updated this week
- Vulnerability Static Analysis for Containers☆10,852Updated last week
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.☆3,926Updated 8 months ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆854Updated 2 years ago
- A service that analyzes docker images and scans for vulnerabilities☆1,590Updated 2 years ago
- Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.☆1,915Updated last week
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,363Updated this week
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start☆3,089Updated 10 months ago
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,623Updated last week
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,345Updated this week
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,419Updated 5 months ago
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,194Updated 3 months ago
- A vulnerability scanner for container images and filesystems☆11,005Updated last week
- Find secrets with Gitleaks 🔑☆23,930Updated 2 weeks ago
- Cloud Security Posture Management (CSPM)☆3,634Updated last month
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆7,952Updated this week
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆13,366Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,967Updated last year
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,183Updated this week
- InSpec: Auditing and Testing Framework☆3,014Updated this week
- Multi-Cloud Security Auditing Tool☆7,424Updated last month
- CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys☆1,158Updated 2 years ago
- Find, verify, and analyze leaked credentials☆23,246Updated this week
- LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Reque…☆1,456Updated last year
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,150Updated last week
- Prevents you from committing secrets and credentials into git repositories☆13,043Updated 2 months ago