semgrep / semgrep-vscodeLinks
Semgrep extension for Visual Studio Code
☆73Updated last week
Alternatives and similar repositories for semgrep-vscode
Users that are interested in semgrep-vscode are comparing it to the libraries listed below
Sorting:
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆47Updated this week
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆74Updated last year
- DefectDojo Community Content☆18Updated last month
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆132Updated last week
- Manager of third-party sources of Semgrep rules 🗂☆90Updated last year
- SARIF Microsoft Visual Studio Code extension☆125Updated 3 weeks ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆40Updated 4 years ago
- Golang installer for DefectDojo☆29Updated 10 months ago
- A command-line application to generate random user agent strings.☆17Updated 5 years ago
- CLI component of OWASP PurpleTeam☆133Updated 2 years ago
- A set of Python command line tools for working with SARIF files produced by code analysis tools☆137Updated 3 months ago
- Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks☆61Updated 3 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆227Updated last year
- Deptective automatically determines the native dependencies required to run any arbitrary program or command.☆126Updated 2 weeks ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆41Updated last year
- ☆27Updated 3 years ago
- ☆15Updated this week
- An open-source collection of API key rotation tutorials.☆75Updated 3 months ago
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆188Updated 2 weeks ago
- Open-source vulnerability disclosure policy templates.☆68Updated 3 years ago
- Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…☆212Updated this week
- A community collection of security reviews of open source software components.☆96Updated last year
- CredSweeper is a tool to detect credentials in any directories or files. CredSweeper could help users to detect unwanted exposure of cred…☆144Updated this week
- Official repository for the Open Vulnerability and Assessment Language☆82Updated 2 weeks ago
- Modular framework for file information extraction and dependency analysis to generate accurate SBOMs☆36Updated this week
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆29Updated 2 years ago
- Identify servers running various SSL VPNs based on protocol-specific behaviors☆88Updated last year
- A wrapper around jq, to help you parse jq output!☆30Updated 5 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Updated 5 months ago
- Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…☆12Updated 5 years ago