advanced-security / grab_qlLinks
Grab some/all of CodeQL CLI binary, QL library, VSCode starter workspace, VSCode and VSCode QL extension
☆11Updated 6 months ago
Alternatives and similar repositories for grab_ql
Users that are interested in grab_ql are comparing it to the libraries listed below
Sorting:
- Put the power of CodeQL in your pocket, take it with you to any CI 🚀☆12Updated 2 years ago
- A curated list of awesome CodeQL resources.☆58Updated this week
- CodeQL Security Queries☆27Updated last week
- GitHub Action for filtering Code Scanning alerts by path and id☆36Updated last year
- GH CLI CodeQL Scan Extension☆20Updated 3 months ago
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆85Updated last year
- GitHub Advanced Security Python Toolkit☆14Updated 2 weeks ago
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆27Updated last year
- SARIF Microsoft Visual Studio Code extension☆125Updated 3 weeks ago
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆188Updated 2 weeks ago
- A report formatter for Bandit (a Python security analyzer) that produces output in the SARIF format.☆20Updated 2 years ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆157Updated last year
- An extension for Visual Studio Code that adds rich language support for CodeQL☆488Updated last week
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 3 years ago
- This repository contains CodeQL queries and libraries which support various Coding Standards.☆179Updated this week
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆122Updated 2 years ago
- Collection of community-driven CodeQL query, library and extension packs☆192Updated last week
- Original workshops and staging area for new ones☆16Updated 5 months ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆79Updated 3 weeks ago
- OSS-Fuzz vulnerabilities for OSV.☆166Updated this week
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆15Updated 2 months ago
- This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…☆27Updated 2 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆132Updated last week
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Updated last week
- Analyse package dependency networks at the call graph level☆96Updated 2 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆61Updated 8 months ago
- Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning☆23Updated 5 months ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆139Updated 2 years ago
- A place to systematically store software bill of materials (SBOM) documents.☆49Updated 2 years ago
- Open Source Vulnerability schema.☆220Updated this week