Yelp / detect-secrets
An enterprise friendly way of detecting and preventing secrets in code.
☆4,054Updated 2 months ago
Alternatives and similar repositories for detect-secrets
Users that are interested in detect-secrets are comparing it to the libraries listed below
Sorting:
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆11,605Updated this week
- Tfsec is now part of Trivy☆6,816Updated last week
- Bandit is a tool designed to find common security issues in Python code.☆6,955Updated last week
- Multi-Cloud Security Auditing Tool☆7,129Updated 5 months ago
- Hunt for security weaknesses in Kubernetes clusters☆4,855Updated last year
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆1,987Updated last week
- Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.☆1,838Updated last week
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.☆3,896Updated 2 months ago
- Open source vulnerability DB and triage service.☆1,848Updated this week
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start☆2,894Updated 4 months ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆840Updated last year
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆26,235Updated last week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,287Updated this week
- Prevents you from committing secrets and credentials into git repositories☆12,743Updated last year
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆7,389Updated 2 weeks ago
- A vulnerability scanner for container images and filesystems☆9,821Updated this week
- Find secrets with Gitleaks 🔑☆19,776Updated this week
- Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.☆7,309Updated last week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,691Updated last month
- DevSecOps, ASPM, Vulnerability Management. All on one platform.☆4,006Updated this week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,423Updated last week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,358Updated this week
- A service that analyzes docker images and scans for vulnerabilities☆1,585Updated 2 years ago
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,115Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆6,954Updated this week
- A pretty sweet vulnerability scanner☆4,123Updated 7 months ago
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,081Updated last week
- Dockerfile linter, validate inline bash, written in Haskell☆10,914Updated last month
- OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependen…☆6,906Updated last week
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,023Updated this week