securesauce / precliLinks
Precaution CLI - command line static application security testing tool
☆26Updated last week
Alternatives and similar repositories for precli
Users that are interested in precli are comparing it to the libraries listed below
Sorting:
- EPSS(Exploit Prediction Scoring System) API client☆20Updated 3 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆84Updated last week
- Sharing software supply chain security open source projects☆53Updated 3 years ago
- AI-Native Static Code Analysis for modern security teams. Built for finding vulnerabilities, advanced structural search, derive insights …☆97Updated this week
- Modular framework for file information extraction and dependency analysis to generate accurate SBOMs☆39Updated this week
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆52Updated 2 months ago
- Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners☆14Updated this week
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆137Updated 8 months ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆135Updated 2 months ago
- Data about all known supply-chain attacks through history☆63Updated 8 months ago
- A tool to check the security settings of Github Organizations.☆75Updated 2 years ago
- This JavaScript CLI "undeletes' packages that have been removed from the NPM registry☆29Updated last month
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆139Updated 2 years ago
- Dragon-GPT uses Chat-GPT, or local LLM, to execute automatic and AI-powered threat modeling analysis on a given OWASP Threat Dragon diagr…☆41Updated 7 months ago
- ☆156Updated 5 months ago
- Fork Threat Modeling Platform - Community☆27Updated 3 months ago
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆141Updated last month
- An OpenAI API Compatible Honeypot Gateway☆17Updated 10 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Updated 7 months ago
- Automated vulnerability discovery and annotation☆68Updated last year
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆141Updated 11 months ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆159Updated last year
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆79Updated 2 weeks ago
- Security tool against dependency typosquatting attacks☆54Updated this week
- Pentester-focused Docker registry tool to enumerate and pull images☆36Updated 3 months ago
- Utility that provides an API platform for validating, querying and managing BOM data☆124Updated last month
- A community collection of security reviews of open source software components.☆96Updated last year
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆135Updated 2 weeks ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆110Updated this week
- Deptective automatically determines the native dependencies required to run any arbitrary program or command.☆127Updated last month