Alternatives and similar repositories for overlay

Users that are interested in overlay are comparing it to the libraries listed below

• slalombuild / secureli
  seCureLI is a tool that enables you to experience the delight of building products by helping you get ideas from your head into working s…
  ☆28Updated last year
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆127Updated 11 months ago
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆674Updated 7 months ago
• step-security / wait-for-secrets
  Publish from GitHub Actions using multi-factor authentication
  ☆290Updated last month
• apiiro / PRevent
  Prevent merging of malicious code in pull requests
  ☆235Updated 6 months ago
• latiotech / LAST
  Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini
  ☆174Updated 5 months ago
• yowainwright / pastoralist
  A CLI for magically shepherding package.json overrides 👩🏽‍🌾
  ☆74Updated last week
• step-security / github-actions-goat
  GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment
  ☆481Updated 3 months ago
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• Checkmarx / 2ms
  Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
  ☆128Updated last week
• sandworm-hq / sandworm-guard-js
  Easy auditing & sandboxing for your JavaScript dependencies 🪱
  ☆253Updated 2 years ago
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆74Updated last month
• csdev / ezghsa
  EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.
  ☆35Updated last month
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆153Updated 10 months ago
• Legit-Labs / legitify
  Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
  ☆815Updated 6 months ago
• TinderSec / oidc-scanner-aws
  ☆49Updated 2 years ago
• Aqua-Nautilus / Dependency-Deprecated-Checker
  ☆56Updated last year
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆332Updated last week
• referefref / gitdoorcheck
  Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
  ☆73Updated last year
• Mixeway / Flow
  Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams
  ☆75Updated this week
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆54Updated this week
• sarimabbas / authortrail
  See all the files you have ever touched in a Git repo
  ☆244Updated 9 months ago
• secutils-dev / secutils
  Secutils.dev is an open-source, versatile, yet simple security toolbox for engineers and researchers
  ☆75Updated 2 weeks ago
• NodeSecure / js-x-ray
  JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
  ☆256Updated this week
• ossf / package-manager-best-practices
  Collection of security best practices for package managers.
  ☆164Updated 3 years ago
• vitonsky / arrival-time
  Simple and powerful progress time estimation (ETA) for JavaScript
  ☆119Updated 9 months ago
• cybrota / whispr
  A multi-vault secret injection tool for safely injecting secrets into app environment
  ☆128Updated 3 weeks ago
• safedep / vet
  Protect against malicious open source packages 🤖
  ☆791Updated last week
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆325Updated 2 months ago
• specfy / stack-analyser
  Extract +700 technologies from any repository. Detect Languages, SaaS, Cloud, Infrastructure, Dependencies and Services
  ☆376Updated this week