Alternatives and similar repositories for vet

Users that are interested in vet are comparing it to the libraries listed below

• apiiro / PRevent
  Prevent merging of malicious code in pull requests
  ☆230Updated 5 months ago
• opengrep / opengrep-rules
  ☆82Updated 7 months ago
• mindersec / minder
  Software Supply Chain Security Platform
  ☆348Updated this week
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆309Updated last week
• gittuf / gittuf
  A security layer for Git repositories
  ☆537Updated last week
• xeol-io / xeol
  A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
  ☆404Updated last week
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆667Updated 6 months ago
• MaibornWolff / SecObserve
  SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…
  ☆153Updated this week
• Legit-Labs / legitify
  Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
  ☆815Updated 4 months ago
• kondukto-io / kntrl
  kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …
  ☆116Updated 3 months ago
• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆297Updated last week
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆152Updated 9 months ago
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆324Updated 3 weeks ago
• turbot / tailpipe
  select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, r…
  ☆474Updated this week
• Mixeway / Flow
  Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams
  ☆52Updated this week
• TupleType / awesome-cicd-attacks
  Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
  ☆536Updated 6 months ago
• crashappsec / chalk
  Chalk allows you to follow code from development, through builds and into production.
  ☆393Updated this week
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆108Updated 2 months ago
• mongodb / kingfisher
  Kingfisher is a blazingly fast secret‑scanning and live validation tool built in Rust
  ☆520Updated this week
• opengrep / opengrep
  🔎 Static code analysis engine to find security issues in code.
  ☆1,537Updated this week
• smithy-security / smithy
  The security workflow engine!
  ☆118Updated this week
• google / osv-scalibr
  OSV-SCALIBR: A library for Software Composition Analysis
  ☆446Updated this week
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆53Updated this week
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious npm and PyPI packages
  ☆158Updated last week
• tldrsec / awesome-secure-defaults
  Awesome secure by default libraries to help you eliminate bug classes!
  ☆699Updated 4 months ago
• chainloop-dev / chainloop
  Evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more
  ☆485Updated this week
• latiotech / LAST
  Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini
  ☆174Updated 4 months ago
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆492Updated last week
• devops-kung-fu / bomber
  Scans Software Bill of Materials (SBOMs) for security vulnerabilities
  ☆578Updated 4 months ago
• apiiro / malicious-code-ruleset
  Focused malicious code detection ruleset, with a high protection-to-noise ratio
  ☆123Updated 6 months ago