ajinabraham / njsscan-action

Related projects ⓘ

Alternatives and complementary repositories for njsscan-action

• NodeSecure / js-x-ray
  JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
  ☆229Updated 3 weeks ago
• googleapis / nodejs-recaptcha-enterprise
  This repository is deprecated. All of its content and history has been moved to googleapis/google-cloud-node.
  ☆22Updated last year
• OWASP / cwe-sdk-javascript
  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
  ☆33Updated last month
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆375Updated last week
• oxsecurity / codetotal
  Analyze any snippet, file, or repository to detect possible security flaws such as secret in code, open source vulnerability, code securi…
  ☆73Updated 3 months ago
• github / contributors
  GitHub Action that given an organization or repository, produces information about the contributors over the specified time period.
  ☆102Updated this week
• snyk-labs / snync
  Mitigate security concerns of Dependency Confusion supply chain security risks
  ☆40Updated 2 years ago
• advanced-security / codeql-bundle-action
  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
  ☆21Updated 6 months ago
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated last year
• advanced-security / GSSAR
  GitHub Secret Scanning Auto Remediator (GSSAR)
  ☆44Updated last year
• advanced-security / gh-codeql-scan
  GH CLI CodeQL Scan Extension
  ☆18Updated last month
• github / cleanowners
  A GitHub Action to suggest removal of non-organization members from CODEOWNERS files
  ☆117Updated this week
• snyk / awesome-snyk-community
  Awesome Snyk community contributions, champions, integrations, blogs, tools and more 💜
  ☆44Updated 2 years ago
• projectdiscovery / subfinder-action
  Fast and passive subdomain enumeration.
  ☆14Updated 2 years ago
• zaproxy / action-api-scan
  A GitHub Action for running the ZAP API scan
  ☆54Updated this week
• fundacaocerti / mobsf-action
  GitHub Actions for MobSF
  ☆25Updated 7 months ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆109Updated 11 months ago
• KarimPwnz / sourcegraph-scripts
  Scripts for Sourcegraph search results. Useful for static analysis <3
  ☆24Updated last year
• 1Password / burp-1password-session-analyzer
  Burp plugin for the 1Password session protocol for use by security researchers. https://bugcrowd.com/agilebits
  ☆55Updated 11 months ago
• securitytxt / securitytxt.org
  Static website for security.txt.
  ☆65Updated 4 months ago
• microsoft / sarif-js-sdk
  JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…
  ☆27Updated 5 months ago
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆55Updated 2 months ago
• SocketDev / socket-cli
  The Socket CLI
  ☆109Updated this week
• auth0-extensions / auth0-sso-dashboard-extension
  ☆46Updated last month
• Bearer / bearer-rules
  Rules for Bearer SAST
  ☆24Updated last week
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆36Updated 3 years ago
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆119Updated 5 months ago
• snyk / vscode-extension
  Snyk extension for Visual Studio Code
  ☆78Updated this week
• github / codeql-learninglab-actions
  Actions and Images for use in Learning Lab courses for CodeQL
  ☆35Updated 2 years ago
• moloch-- / reasonably-secure-electron
  A pattern for reasonably secure Electron applications
  ☆73Updated last year