semgrep / semgrep-vscode

Related projects ⓘ

Alternatives and complementary repositories for semgrep-vscode

• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆37Updated this week
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆73Updated 7 months ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆21Updated 2 weeks ago
• usnistgov / swid-tools
  ☆13Updated last month
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆111Updated last month
• ShiftLeftSecurity / scan-docs
  ☆28Updated 2 years ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆22Updated 4 months ago
• trailofbits / testing-handbook
  Trail of Bits Testing Handbook
  ☆58Updated 3 weeks ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆76Updated 4 months ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆33Updated last month
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆71Updated last week
• jtmelton / semgrep-idea-plugin
  ☆17Updated last year
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆13Updated last year
• hmrc / security-git-hooks
  ☆18Updated 9 months ago
• picatz / randomua
  A command-line application to generate random user agent strings.
  ☆17Updated 4 years ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆49Updated 7 months ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers…
  ☆98Updated this week
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 8 months ago
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆84Updated last week
• ochronasec / ochrona-cli
  A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
  ☆52Updated last year
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆169Updated last week
• Checkmarx / chainjacking
  Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
  ☆57Updated 2 years ago
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆41Updated 7 months ago
• fabric8-analytics / cvedb
  CVE database
  ☆22Updated 4 years ago
• wspr-ncsu / mininode
  Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.
  ☆22Updated last year
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆87Updated 2 weeks ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆58Updated 3 weeks ago
• synopsys-sig / tslint-angular-security
  TSLint rules for Angular
  ☆18Updated 5 years ago