semgrep / semgrep-vscodeLinks
Semgrep extension for Visual Studio Code
☆62Updated this week
Alternatives and similar repositories for semgrep-vscode
Users that are interested in semgrep-vscode are comparing it to the libraries listed below
Sorting:
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆41Updated this week
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆73Updated last year
- ☆28Updated 2 years ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 5 months ago
- Manager of third-party sources of Semgrep rules 🗂☆86Updated 10 months ago
- Trail of Bits Testing Handbook☆74Updated last week
- Simple fuzzer for OpenAPI 3 specification based APIs☆22Updated 2 years ago
- Custom semgrep rules registry☆12Updated 2 years ago
- ☆19Updated last year
- SARIF Microsoft Visual Studio Code extension☆115Updated last month
- OWASP ZAP addon for finding vulnerabilities in JWT Implementations☆32Updated 3 months ago
- A command-line application to generate random user agent strings.☆17Updated 5 years ago
- Analyze any snippet, file, or repository to detect possible security flaws such as secret in code, open source vulnerability, code securi…☆76Updated 9 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆65Updated this week
- OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions☆104Updated last year
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆57Updated this week
- javaspringvulny - a Spring Boot web application built wrong on purpose☆19Updated last month
- A Python library and command line interface for CVE Services.☆65Updated 2 weeks ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆23Updated last month
- A lightweight static security analysis tool for modern Perl Apps☆49Updated this week
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- Modular framework for file information extraction and dependency analysis to generate accurate SBOMs☆31Updated this week
- Maturity Model Collaborative project☆15Updated 2 years ago
- A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs☆51Updated 2 years ago
- ☆68Updated 4 months ago
- DefectDojo Community Content☆18Updated 7 months ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆47Updated 2 years ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 3 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 2 months ago
- Code Pathfinder, the open-source alternative to GitHub CodeQL built with GoLang. Built for advanced structural search, derive insights, f…☆60Updated this week