apiiro / PReventLinks
Prevent merging of malicious code in pull requests
☆253Updated 9 months ago
Alternatives and similar repositories for PRevent
Users that are interested in PRevent are comparing it to the libraries listed below
Sorting:
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆139Updated 10 months ago
- Security tool against dependency typosquatting attacks☆54Updated last week
- Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams☆78Updated 2 weeks ago
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆99Updated 4 months ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆158Updated last year
- Red Teaming for AI and Cloud☆200Updated last month
- CI/CD Security Analyzer☆728Updated 10 months ago
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.☆146Updated 3 weeks ago
- PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.☆67Updated last week
- boostsecurityio/poutine☆354Updated last month
- Analyzes software dependencies across GitHub repositories to identify security vulnerabilities and health risks in your supply chain.☆111Updated 3 weeks ago
- FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).☆180Updated last year
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆176Updated 8 months ago
- Metis is an open-source, AI-driven tool for deep security code review☆434Updated last week
- Web Server Vulnerability Scanning Tool☆36Updated 9 months ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆210Updated last week
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆132Updated 6 months ago
- An open-source collection of API key rotation tutorials.☆76Updated 4 months ago
- Protect against malicious open source packages 🤖☆929Updated this week
- Secure Code Review AI Agent (SeCoRA) - AI SAST☆54Updated 11 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆41Updated last year
- Validate the isolation posture of your container environment.☆309Updated 2 weeks ago
- ☆75Updated 9 months ago
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆37Updated 2 years ago
- ☆71Updated 2 months ago
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆70Updated last month
- ☆101Updated 5 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆235Updated 11 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆114Updated this week