Alternatives and similar repositories for semgrep-vscode

Users that are interested in semgrep-vscode are comparing it to the libraries listed below

• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆43Updated this week
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆74Updated last year
• Checkmarx / chainjacking
  Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
  ☆59Updated 3 years ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆129Updated last month
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆40Updated 3 years ago
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆124Updated 3 weeks ago
• picatz / randomua
  A command-line application to generate random user agent strings.
  ☆17Updated 5 years ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆87Updated last year
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆121Updated last month
• IBM / detect-secrets
  An enterprise friendly way of detecting and preventing secrets in code.
  ☆81Updated last week
• purpleteam-labs / purpleteam
  CLI component of OWASP PurpleTeam
  ☆131Updated last year
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆53Updated 2 years ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆226Updated last year
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• anchore / grype-db
  ☆54Updated last week
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆18Updated 2 weeks ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆66Updated 3 months ago
• SasanLabs / owasp-zap-jwt-addon
  OWASP ZAP addon for finding vulnerabilities in JWT Implementations
  ☆34Updated 6 months ago
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆108Updated last month
• ShiftLeftSecurity / scan-docs
  ☆27Updated 3 years ago
• OWASP-Benchmark / BenchmarkUtils
  OWASP Benchmark Project Utilities - Provides scorecard generation and crawling tools for Benchmark style test suites.
  ☆18Updated this week
• pry0cc / jf
  A wrapper around jq, to help you parse jq output!
  ☆30Updated 5 years ago
• Vulnogram / Vulnogram
  Vulnogram is a tool for creating and editing CVE information in CVE JSON format
  ☆199Updated 4 months ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆95Updated last year
• ScottNorberg-NCG / CodeSheriff.NET
  ☆18Updated last year
• feeltheajf / trufflehog3
  Find secrets in your codebase
  ☆124Updated 6 months ago
• LLNL / Surfactant
  Modular framework for file information extraction and dependency analysis to generate accurate SBOMs
  ☆36Updated this week
• DefectDojo / godojo
  Golang installer for DefectDojo
  ☆29Updated 8 months ago
• nccgroup / ccs
  ☆113Updated 2 years ago