cybrota / scharfLinks
Static analysis tool to Identify and Fix GitHub Actions prone to Supply‑Chain Risks
☆12Updated 3 weeks ago
Alternatives and similar repositories for scharf
Users that are interested in scharf are comparing it to the libraries listed below
Sorting:
- ☆68Updated 3 weeks ago
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆57Updated 11 months ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 3 months ago
- Microsoft Defender for Cloud threat matrix for Kubernetes☆25Updated 2 years ago
- DefectDojo Community Content☆18Updated 7 months ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 7 months ago
- Code Pathfinder, the open-source alternative to GitHub CodeQL built with GoLang. Built for advanced structural search, derive insights, f…☆60Updated this week
- Xipher is a curated collection of cryptographic primitives put together to perform key/password based asymmetric encryption☆11Updated this week
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Updated last year
- ☆72Updated 3 weeks ago
- ☆52Updated 4 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated this week
- Scalable integrity framework for ABAC on AWS☆54Updated 2 months ago
- ☆27Updated 3 weeks ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Updated last year
- ☆44Updated 7 months ago
- VSCode Extension for Deciduous☆9Updated 5 months ago
- A tool to audit Erlang & Elixir dependencies, to make sure your ✨ gleam projects really sparkle!☆17Updated last month
- An IAM Simulator that outputs detailed explains of how a request was evaluated.☆79Updated last week
- ☆29Updated 7 months ago
- ☆54Updated this week
- ☆12Updated 7 months ago
- ☆25Updated 2 months ago
- TACOS framework structural details☆20Updated 3 weeks ago
- The security workflow engine!☆115Updated this week
- ☆68Updated 4 months ago
- A project to visualize the software supply chain☆52Updated last year
- NIST OSCAL SDK and CLI☆19Updated last week
- ☆73Updated 2 months ago