apiiro / PReventLinks
Prevent merging of malicious code in pull requests
☆224Updated 2 months ago
Alternatives and similar repositories for PRevent
Users that are interested in PRevent are comparing it to the libraries listed below
Sorting:
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆119Updated 3 months ago
- Security tool against dependency typosquatting attacks☆52Updated this week
- Validate the isolation posture of your container environment.☆279Updated 3 weeks ago
- boostsecurityio/poutine☆282Updated this week
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆71Updated 3 weeks ago
- A tool for preventing the installation of malicious PyPI and npm packages☆145Updated this week
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆139Updated last month
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆149Updated 6 months ago
- Next Generation Software Composition Analysis (SCA) with Malicious Package Detection, Code Context & Policy as Code☆399Updated this week
- ☆68Updated 3 weeks ago
- Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams☆50Updated last week
- ☆68Updated 4 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 5 months ago
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆36Updated last year
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated 2 weeks ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆55Updated 4 months ago
- Nakamoto is a 2 layer encryption tool to protect your data and your cyptocurrency☆14Updated 2 months ago
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆326Updated 2 months ago
- FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).☆180Updated 10 months ago
- Identify hardcoded secrets in static structured text (version 2)☆91Updated 4 months ago
- A flexible threat detection platform that simplifies rule management and deployment using K8s CronJob and Helm, but can also run standalo…☆376Updated 8 months ago
- Web Server Vulnerability Scanning Tool☆36Updated 2 months ago
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- Runtime Security Solution for your CI/CD Pipeline☆104Updated 2 months ago
- PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.☆52Updated last week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆170Updated last month
- A security layer for Git repositories☆525Updated this week
- Open-source best practices for protecting a secure, sensible cloud platform☆125Updated 7 months ago
- Red Teaming for AI and Cloud☆143Updated this week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆141Updated 5 months ago