Alternatives and similar repositories for semgrep-vscode

Users that are interested in semgrep-vscode are comparing it to the libraries listed below

• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆42Updated this week
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆73Updated last year
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆119Updated 3 weeks ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆129Updated 3 weeks ago
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆107Updated last month
• LLNL / Surfactant
  Modular framework for file information extraction and dependency analysis to generate accurate SBOMs
  ☆33Updated last week
• usnistgov / swid-tools
  ☆14Updated this week
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated last week
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆119Updated last week
• jtmelton / semgrep-idea-plugin
  ☆16Updated last year
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• Checkmarx / chainjacking
  Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
  ☆59Updated 3 years ago
• cve-search / CveXplore
  CveXplore
  ☆43Updated last week
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• Vulnogram / Vulnogram
  Vulnogram is a tool for creating and editing CVE information in CVE JSON format
  ☆198Updated 3 months ago
• ptdropper / CVE-Scanner-for-your-SW-BOM
  CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
  ☆17Updated 4 years ago
• picatz / randomua
  A command-line application to generate random user agent strings.
  ☆17Updated 5 years ago
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆186Updated 3 weeks ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆69Updated 3 weeks ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆59Updated 4 months ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆225Updated last year
• OWASP-Benchmark / BenchmarkUtils
  OWASP Benchmark Project Utilities - Provides scorecard generation and crawling tools for Benchmark style test suites.
  ☆18Updated this week
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆87Updated last year
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆18Updated 2 months ago
• OVAL-Community / OVAL
  Official repository for the Open Vulnerability and Assessment Language
  ☆75Updated this week
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆78Updated 9 months ago
• AppThreat / atom
  atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
  ☆71Updated this week
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• pry0cc / jf
  A wrapper around jq, to help you parse jq output!
  ☆30Updated 5 years ago
• owasp-dep-scan / depscan-bin
  Binary builds for dep-scan - The Dependency Scanner
  ☆10Updated last year