Alternatives and similar repositories for security-advisories

Users that are interested in security-advisories are comparing it to the libraries listed below

• spaceraccoon / npm-zoo
  A zoo for malicious NPM packages
  ☆20Updated 2 years ago
• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• tc39 / security
  Discussion area for security aspects of ECMAScript
  ☆64Updated 7 years ago
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆57Updated this week
• JacksonGL / NPM-Vuln-PoC
  Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
  ☆42Updated 11 months ago
• OWASP / cwe-sdk-javascript
  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
  ☆32Updated 4 months ago
• mikesamuel / attack-review-testbed
  Make it easy to probe the strengths and weaknesses of a hardened Node.js stack
  ☆19Updated 6 years ago
• snyk / vulncost
  Find security vulnerabilities in open source npm packages while you code
  ☆206Updated 3 years ago
• bmeck / node-policy
  Policy management tool for Node.js
  ☆22Updated 2 years ago
• webschik / tslint-config-security
  TSLint security rules
  ☆69Updated 4 years ago
• mozfreddyb / eslint-plugin-scanjs-rules
  rules for scanjs functionality
  ☆28Updated 3 years ago
• npm / npm-audit-report
  npm audit security report
  ☆35Updated last month
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆173Updated 6 years ago
• mikesamuel / node-sec-patterns
  Security design pattern support for Node.js
  ☆24Updated 6 years ago
• pauljt / scanjs
  Static analysis tool for javascript code based. Scanjs uses Esprima to convert sources to AST, then walks AST looking for patterns.
  ☆54Updated 11 years ago
• NodeSecure / vulnera
  Programmatically fetch security vulnerabilities with one or many strategies (NPM Audit, Sonatype, Snyk, Node.js DB).
  ☆30Updated last week
• lirantal / detect-secrets
  A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets
  ☆51Updated 3 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆131Updated 6 months ago
• nodejs / make-node-meeting
  Generate a text for a GitHub issue announcing a Node.js working group meeting
  ☆12Updated 5 months ago
• LewisArdern / eslint-plugin-prototype-pollution-security-rules
  ☆16Updated 6 years ago
• nodejs / Gzemnid
  An npm beholder that deceives you
  ☆31Updated 5 months ago
• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆220Updated this week
• bahmutov / ban-sensitive-files
  Checks filenames to be committed against a library of filename rules to prevent sensitive files in Git
  ☆66Updated this week
• jsoverson / badjs.org
  ☆12Updated 2 years ago
• snyk-labs / snync
  Mitigate security concerns of Dependency Confusion supply chain security risks
  ☆46Updated 2 years ago
• olivo / redos-detector
  A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.
  ☆34Updated 8 years ago
• lirantal / js-vulns-detector
  Inject JS to the DOM to find vulnerable JavaScript libraries
  ☆10Updated 8 months ago
• nodejs / ecmascript-modules
  A fork of Node.js to hash out ideas related to ESModules
  ☆73Updated 5 years ago
• mozfreddyb / eslint-config-scanjs
  umbrella config to achieve scanjs-like functionality through eslint
  ☆88Updated 3 years ago
• WICG / csp-next
  A Modest Content Security Proposal
  ☆40Updated 3 years ago