Alternatives and similar repositories for npm-manifest-check:

Users that are interested in npm-manifest-check are comparing it to the libraries listed below

• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆67Updated this week
• Aqua-Nautilus / Dependency-Deprecated-Checker
  ☆54Updated 10 months ago
• owasp-change / owasp-change.github.io
  An Open Letter to the OWASP Board
  ☆106Updated last year
• salesforce / lobster-pot
  Scans every git push to your Github organisations to find unwanted secrets.
  ☆88Updated last year
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆46Updated last year
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆40Updated last year
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆83Updated 2 weeks ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆39Updated last year
• Fennerr / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆72Updated 9 months ago
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• snyk-labs / snync
  Mitigate security concerns of Dependency Confusion supply chain security risks
  ☆46Updated 2 years ago
• Permiso-io-tools / bucket-shield
  ☆12Updated 4 months ago
• TinderSec / oidc-scanner-aws
  ☆47Updated 2 years ago
• csdev / ezghsa
  EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.
  ☆35Updated 3 months ago
• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆16Updated this week
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆119Updated 2 months ago
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated last week
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆39Updated this week
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆259Updated 3 weeks ago
• cloud-copilot / iam-simulate
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆74Updated 3 weeks ago
• OWASP / cornucopia
  The source files and tools needed to build the OWASP Cornucopia decks in various languages
  ☆61Updated this week
• tenable / hidden-services-revealer
  ☆32Updated 7 months ago
• Hacking-the-Cloud / htc-ctfs
  Holds the public Hacking the Cloud CTFs.
  ☆55Updated last year
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆40Updated this week
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated last year
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆53Updated last month
• turbot / steampipe-mod-github-sherlock
  Interrogate your GitHub resources with the help of the world's greatest detectives: Powerpipe + Steampipe + Sherlock.
  ☆39Updated 5 months ago
• kulkansecurity / gitxray
  A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.
  ☆134Updated 3 weeks ago
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆69Updated last year
• tracebit-com / find-s3-account
  Sample code for finding AWS Account ID of an S3 bucket.
  ☆50Updated last year