Alternatives and similar repositories for sonarless

Users that are interested in sonarless are comparing it to the libraries listed below

• apiiro / PRevent
  Prevent merging of malicious code in pull requests
  ☆252Updated last month
• SecObserve / secobserve_actions_templates
  GitHub actions and GitLab CI templates run various vulnerability scanners, upload the results into SecObserve and make the results of the…
  ☆27Updated this week
• Anubhav9 / RedCoffee
  RedCoffee is a Python Based CLI Tool that generates PDF Reports for analysis done using SonarQube Community Edition
  ☆39Updated 3 months ago
• aquasecurity / trivy-vscode-extension
  A VS Code Extension for Trivy
  ☆162Updated last week
• anchore / chronicle
  a fast changelog generator sourced from PRs and Issues
  ☆60Updated this week
• extensiontotal / extensiontotal-vscode
  ☆25Updated 10 months ago
• undergroundwires / bump-everywhere
  🚀 Automate versioning, changelog creation, README updates and GitHub releases using GitHub Actions,npm, docker or bash.
  ☆74Updated 2 months ago
• fatihtokus / scan2html
  A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repo…
  ☆125Updated last month
• arnica-ext / GitGoat
  GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…
  ☆172Updated last year
• TinderSec / oidc-scanner-aws
  ☆49Updated 2 years ago
• turbot / powerpipe
  Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build …
  ☆474Updated last week
• hysnsec / awesome-sca
  A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.
  ☆111Updated last year
• wiz-sec-public / secure-rules-files
  Baseline rules files to improve the security of AI-generated code (Claude, Cursor, Copilot + more)
  ☆216Updated last month
• petrgazarov / salami
  Infrastructure as Natural Language
  ☆46Updated 2 years ago
• turbot / steampipe-plugin-jira
  Use SQL to instantly query Jira. Open source CLI. No DB required.
  ☆25Updated last month
• polyseam / cndi
  Self-Host Cloud-Native Apps with the Ease of PaaS
  ☆204Updated 5 months ago
• mercedes-benz / sechub
  SecHub provides a central API to test software with different security tools.
  ☆356Updated 3 weeks ago
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆76Updated 5 months ago
• os-scar / overlay
  Overlay is a browser extension helping developers evaluate open source packages before picking them
  ☆225Updated 7 months ago
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆729Updated 11 months ago
• aws-samples / minimum-eks-devsecops-with-monitoring-options
  Minimum DevSecOps with Monitoring Options on Amazon EKS
  ☆13Updated 3 weeks ago
• padok-team / yatas
  A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
  ☆337Updated last month
• interlynk-io / sbommv
  SBOM Move - Automate build and transfer of SBOMs across systems
  ☆25Updated 2 weeks ago
• Checkmarx / 2ms
  Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
  ☆143Updated last week
• rmkanda / tools
  Curated list of security tools
  ☆66Updated 2 years ago
• SecObserve / SecObserve
  SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…
  ☆217Updated this week
• cybrota / whispr
  A multi-vault secret injection tool for safely injecting secrets into app environment
  ☆132Updated last month
• owenrumney / squealer
  Telling tales on you for leaking secrets!
  ☆232Updated 2 weeks ago
• intility / vscode-backstage
  Backstage support for Visual Studio Code
  ☆38Updated 2 years ago
• pypa / gh-action-pip-audit
  A GitHub Action for pip-audit
  ☆84Updated this week