safedep / vetLinks
Next Generation Software Composition Analysis (SCA) with Malicious Package Detection, Code Context & Policy as Code
☆469Updated this week
Alternatives and similar repositories for vet
Users that are interested in vet are comparing it to the libraries listed below
Sorting:
- Prevent merging of malicious code in pull requests☆224Updated 2 months ago
- CI/CD Security Analyzer☆659Updated 3 months ago
- Software Supply Chain Security Platform☆337Updated this week
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆120Updated 3 months ago
- ☆68Updated 4 months ago
- boostsecurityio/poutine☆282Updated this week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆170Updated last month
- A security layer for Git repositories☆525Updated this week
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆115Updated 3 weeks ago
- Runtime Security Solution for your CI/CD Pipeline☆104Updated 2 months ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆149Updated 6 months ago
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆135Updated this week
- Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git☆92Updated this week
- The security workflow engine!☆115Updated this week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆172Updated 6 months ago
- Gram is Klarna's own threat model diagramming tool☆320Updated 2 weeks ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated this week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆135Updated last year
- Chalk allows you to follow code from development, through builds and into production.☆376Updated this week
- A tool for preventing the installation of malicious PyPI and npm packages☆145Updated this week
- Enrich SBOMs with data from third party services☆175Updated 2 months ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆570Updated 2 months ago
- Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams☆50Updated last week
- Evaluate source control (GitHub) security posture☆250Updated 2 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆229Updated 9 months ago
- Validate the isolation posture of your container environment.☆281Updated 3 weeks ago
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆395Updated last week
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆518Updated 3 months ago
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆363Updated this week
- BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generato…☆376Updated this week