semgrep / semgrep-vscodeLinks
Semgrep extension for Visual Studio Code
☆63Updated this week
Alternatives and similar repositories for semgrep-vscode
Users that are interested in semgrep-vscode are comparing it to the libraries listed below
Sorting:
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆41Updated last week
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆73Updated last year
- SARIF Microsoft Visual Studio Code extension☆117Updated 2 weeks ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 6 months ago
- Python classes for the SARIF object model☆43Updated last year
- Manager of third-party sources of Semgrep rules 🗂☆87Updated 11 months ago
- A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs☆51Updated 2 years ago
- DefectDojo Community Content☆18Updated 3 weeks ago
- A command-line application to generate random user agent strings.☆17Updated 5 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆47Updated 2 years ago
- ☆28Updated 2 years ago
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- A set of Python command line tools for working with SARIF files produced by code analysis tools☆113Updated last month
- Burp Suite DAST Power Tools☆18Updated last month
- ☆13Updated last week
- Simple fuzzer for OpenAPI 3 specification based APIs☆22Updated 2 years ago
- semgrep rules for flakiness, missed error handling, Lua antipatterns and pitfalls.☆14Updated 7 months ago
- A project to visualize the software supply chain☆51Updated last year
- Saves you from Python supply chain attack!☆13Updated 4 years ago
- Fork of https://github.com/PortSwigger/param-miner for header smuggling research☆12Updated 3 years ago
- ZAP Management Scripts☆23Updated 3 weeks ago
- ☆22Updated 3 years ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- Fast and passive subdomain enumeration.☆17Updated 3 years ago
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆57Updated 3 weeks ago
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated last year
- Trail of Bits Testing Handbook☆76Updated 2 weeks ago
- ☆16Updated last year
- A fast port scanner written in go with a focus on reliability and simplicity.☆16Updated 8 months ago
- A MCP server for using Semgrep to scan code for security vulnerabilities.☆203Updated this week