semgrep / semgrep-vscodeLinks
Semgrep extension for Visual Studio Code
☆73Updated this week
Alternatives and similar repositories for semgrep-vscode
Users that are interested in semgrep-vscode are comparing it to the libraries listed below
Sorting:
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆48Updated this week
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆74Updated last year
- SARIF Microsoft Visual Studio Code extension☆132Updated last week
- A set of Python command line tools for working with SARIF files produced by code analysis tools☆140Updated 5 months ago
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆190Updated 2 weeks ago
- Modular framework for file information extraction and dependency analysis to generate accurate SBOMs☆39Updated this week
- A React-based component for viewing SARIF files.☆102Updated last year
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆97Updated last month
- Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…☆212Updated last week
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆122Updated 2 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆135Updated last week
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆83Updated 3 weeks ago
- CVSS2/3/4 library with interactive calculator for Python 2 and Python 3☆116Updated 5 months ago
- DefectDojo Community Content☆17Updated 2 months ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆226Updated last year
- A small utility that keeps your Git repositories from leaking secrets, skipping hooks, or quietly drifting out of compliance. It’s design…☆34Updated last week
- A comprehensive framework for analyzing and defending against attacks targeting Software Development Life Cycle Infrastructure.☆50Updated this week
- Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks☆61Updated 3 years ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆42Updated last year
- Simple fuzzer for OpenAPI 3 specification based APIs☆22Updated 2 years ago
- ☆18Updated last year
- A command-line application to generate random user agent strings.☆17Updated 5 years ago
- An open-source collection of API key rotation tutorials.☆76Updated 4 months ago
- A community collection of security reviews of open source software components.☆96Updated last year
- Dependency Combobulator☆95Updated 2 years ago
- CLI component of OWASP PurpleTeam☆134Updated 2 years ago
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆29Updated 2 years ago
- Fork Threat Modeling Platform - Community☆27Updated 3 months ago
- Data about all known supply-chain attacks through history☆63Updated 8 months ago
- A Python library and command line interface for CVE Services.☆71Updated 4 months ago