Alternatives and similar repositories for PRevent:

Users that are interested in PRevent are comparing it to the libraries listed below

• apiiro / malicious-code-ruleset
  Focused malicious code detection ruleset, with a high protection-to-noise ratio
  ☆112Updated last month
• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆262Updated last week
• opengrep / opengrep-rules
  ☆60Updated 2 months ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆261Updated last month
• referefref / gitdoorcheck
  Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
  ☆72Updated last year
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious PyPI and npm packages
  ☆132Updated this week
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆148Updated 4 months ago
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆84Updated 3 weeks ago
• Mixeway / Flow
  Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams
  ☆48Updated this week
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆39Updated last week
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆69Updated last week
• ManuelBerrueta / FlowAnalyzer
  FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).
  ☆181Updated 8 months ago
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆100Updated 2 weeks ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆273Updated last month
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated 2 weeks ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆39Updated 3 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated last year
• safedep / vet
  🚀 Policy driven vetting of open source packages with malicious code analysis
  ☆309Updated this week
• osbytes / crypt.fyi
  Ephemeral, zero-knowledge, end-to-end encrypted sensitive data sharing
  ☆94Updated last week
• kulkansecurity / gitxray
  A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.
  ☆134Updated 3 weeks ago
• cybrota / whispr
  A multi-vault secret injection tool for safely injecting secrets into app environment
  ☆122Updated last week
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆655Updated last month
• SygniaLabs / Mirage
  ☆73Updated last week
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆162Updated last month
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆164Updated 6 months ago
• shivamsaraswat / SeCoRA
  Secure Code Review AI Agent (SeCoRA) - AI SAST
  ☆48Updated 2 months ago
• synacktiv / octoscan
  Octoscan is a static vulnerability scanner for GitHub action workflows.
  ☆200Updated 2 months ago
• chebuya / sastsweep
  tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …
  ☆221Updated last month
• MaibornWolff / SecObserve
  SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…
  ☆126Updated this week