Alternatives and similar repositories for semgrep-vscode:

Users that are interested in semgrep-vscode are comparing it to the libraries listed below

• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆38Updated this week
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆73Updated 9 months ago
• in-toto / supply-chain-compromises
  ☆22Updated 3 years ago
• kondukto-io / semgrep-rules
  Custom semgrep rules registry
  ☆11Updated 2 years ago
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆76Updated last month
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆37Updated last month
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• ShiftLeftSecurity / scan-docs
  ☆28Updated 2 years ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆22Updated 6 months ago
• hmrc / security-git-hooks
  ☆18Updated 11 months ago
• jtmelton / semgrep-idea-plugin
  ☆17Updated last year
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated 3 months ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆113Updated 3 months ago
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆20Updated 4 years ago
• anchore / grype-db
  ☆41Updated this week
• latacora / remediate-AWS-IMDSv1
  Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.
  ☆16Updated 3 years ago
• usnistgov / swid-tools
  ☆13Updated 3 months ago
• ligurio / semgrep-rules
  semgrep rules for flakiness, missed error handling, Lua antipatterns and pitfalls.
  ☆13Updated 2 months ago
• wspr-ncsu / mininode
  Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.
  ☆22Updated last year
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆93Updated 3 months ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆20Updated last year
• wspr-ncsu / github-actions-security-analysis
  ☆10Updated last year
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 10 months ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆49Updated this week
• trailofbits / testing-handbook
  Trail of Bits Testing Handbook
  ☆60Updated this week
• OWASP / packman
  A documentation and tracking project with the goal of making package management systems more secure.
  ☆50Updated 3 years ago
• Checkmarx / chainjacking
  Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
  ☆57Updated 2 years ago
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆95Updated last week