apiiro / PReventLinks
Prevent merging of malicious code in pull requests
☆225Updated 3 months ago
Alternatives and similar repositories for PRevent
Users that are interested in PRevent are comparing it to the libraries listed below
Sorting:
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆120Updated 4 months ago
- Security tool against dependency typosquatting attacks☆52Updated this week
- ☆71Updated 5 months ago
- Next Generation Software Composition Analysis (SCA) with Malicious Package Detection, Code Context & Policy as Code☆511Updated last week
- Runtime Security Solution for your CI/CD Pipeline☆104Updated 2 weeks ago
- Validate the isolation posture of your container environment.☆287Updated last week
- boostsecurityio/poutine☆301Updated 2 weeks ago
- A tool for preventing the installation of malicious PyPI and npm packages☆149Updated this week
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆330Updated 2 months ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆171Updated 2 months ago
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆212Updated 2 months ago
- CI/CD Security Analyzer☆659Updated 4 months ago
- ☆73Updated 3 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated this week
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆149Updated 7 months ago
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆143Updated last month
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆36Updated last year
- Kingfisher is a blazingly fast secret‑scanning and validation tool built in Rust☆107Updated this week
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆220Updated 2 weeks ago
- A security layer for Git repositories☆534Updated last week
- A flexible threat detection platform that simplifies rule management and deployment using K8s CronJob and Helm, but can also run standalo…☆378Updated 8 months ago
- Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams☆51Updated this week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 6 months ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆314Updated this week
- A MCP server for using Semgrep to scan code for security vulnerabilities.☆200Updated last week
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆281Updated 4 months ago
- API Security Vulnerability Scanner designed to help you secure your APIs.☆149Updated this week
- BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generato…☆380Updated last week
- Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.☆120Updated last month