semgrep / semgrep-vscode
Semgrep extension for Visual Studio Code
☆55Updated last week
Alternatives and similar repositories for semgrep-vscode:
Users that are interested in semgrep-vscode are comparing it to the libraries listed below
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆39Updated this week
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆73Updated 10 months ago
- DefectDojo Community Content☆17Updated 4 months ago
- ☆18Updated last year
- SARIF Microsoft Visual Studio Code extension☆113Updated 4 months ago
- Simple fuzzer for OpenAPI 3 specification based APIs☆21Updated 2 years ago
- Manager of third-party sources of Semgrep rules 🗂☆78Updated 6 months ago
- ZAP Management Scripts☆22Updated this week
- ShiftLeft Scan is a free and open-source commercial-grade security tool for modern DevOps teams.☆13Updated 2 years ago
- ☆17Updated last year
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆33Updated last month
- A project to visualize the software supply chain☆39Updated last year
- ☆28Updated 2 years ago
- ☆13Updated 4 months ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆56Updated 10 months ago
- A meta-database collecting resources that compile lists of breaches☆18Updated 3 months ago
- Dependency Combobulator☆89Updated last year
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆104Updated this week
- Feed parsing for language package manager updates☆76Updated 2 months ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- Maturity Model Collaborative project☆14Updated last year
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆119Updated last month
- Binary builds for dep-scan - The Dependency Scanner☆10Updated 10 months ago
- Trail of Bits Testing Handbook☆60Updated last week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆38Updated 2 months ago
- Collection of dynamic security related helpers☆16Updated 2 years ago
- A command-line application to generate random user agent strings.☆17Updated 4 years ago
- ☆22Updated 3 years ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆35Updated 3 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆46Updated 2 years ago