Alternatives and similar repositories for semgrep-vscode:

Users that are interested in semgrep-vscode are comparing it to the libraries listed below

• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆39Updated this week
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆73Updated 10 months ago
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆76Updated 2 months ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆113Updated 4 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆78Updated 7 months ago
• hmrc / security-git-hooks
  ☆18Updated last year
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆38Updated 2 months ago
• pry0cc / jf
  A wrapper around jq, to help you parse jq output!
  ☆30Updated 4 years ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆23Updated 7 months ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated last year
• usnistgov / swid-tools
  ☆13Updated 4 months ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆35Updated 3 years ago
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆91Updated 3 months ago
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆18Updated 3 months ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆22Updated this week
• trailofbits / vscode-sarif-explorer
  SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results
  ☆22Updated 3 weeks ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆105Updated this week
• ShiftLeftSecurity / scan-docs
  ☆28Updated 2 years ago
• AppThreat / atom
  Atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
  ☆62Updated 3 weeks ago
• apiiro / combobulator
  Dependency Combobulator
  ☆89Updated last year
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated last year
• in-toto / supply-chain-compromises
  ☆22Updated 3 years ago
• ScottNorberg-NCG / CodeSheriff.NET
  ☆16Updated 8 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• synopsys-sig / tslint-angular-security
  TSLint rules for Angular
  ☆18Updated 6 years ago
• talbeerysec / STS-token-decoder
  AWS STS token decoder
  ☆37Updated 6 months ago
• Checkmarx / chainjacking
  Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
  ☆58Updated 2 years ago
• ochronasec / ochrona-cli
  A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
  ☆52Updated last year
• JLLeitschuh / bulk-security-pr-generator
  Generate thousands of pull requests to fix widespread security vulnerabilities across GitHub.
  ☆34Updated 2 weeks ago