Alternatives and similar repositories for cli:

Users that are interested in cli are comparing it to the libraries listed below

• aquasecurity / trivy
  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
  ☆24,739Updated this week
• quay / clair
  Vulnerability Static Analysis for Containers
  ☆10,508Updated last week
• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆3,769Updated last month
• semgrep / semgrep
  Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
  ☆11,164Updated this week
• falcosecurity / falco
  Cloud Native Runtime Security
  ☆7,620Updated this week
• docker / docker-bench-security
  The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in productio…
  ☆9,272Updated 4 months ago
• Yelp / detect-secrets
  An enterprise friendly way of detecting and preventing secrets in code.
  ☆3,946Updated 2 weeks ago
• hashicorp / waypoint
  A tool to build, deploy, and release any application on any platform.
  ☆4,746Updated last year
• aquasecurity / tfsec
  Tfsec is now part of Trivy
  ☆6,772Updated this week
• zaproxy / zaproxy
  The ZAP by Checkmarx Core project
  ☆13,088Updated this week
• ajinabraham / nodejsscan
  nodejsscan is a static security code scanner for Node.js applications.
  ☆2,431Updated last month
• anchore / anchore-engine
  A service that analyzes docker images and scans for vulnerabilities
  ☆1,589Updated 2 years ago
• Bearer / bearer
  Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
  ☆2,193Updated this week
• gitleaks / gitleaks
  Find secrets with Gitleaks 🔑
  ☆18,975Updated this week
• notaryproject / notary
  Notary is a project that allows anyone to have trust over arbitrary collections of data
  ☆3,247Updated 6 months ago
• GoogleContainerTools / container-diff
  container-diff: Diff your Docker containers
  ☆3,768Updated 10 months ago
• apiaryio / dredd
  Language-agnostic HTTP API Testing Tool
  ☆4,199Updated 9 months ago
• nodesecurity / nsp
  node security platform command-line tool
  ☆1,666Updated 6 years ago
• containers / buildah
  A tool that facilitates building OCI images.
  ☆7,633Updated this week
• tenable / terrascan
  Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
  ☆4,838Updated 2 months ago
• apex / up
  Deploy infinitely scalable serverless apps, apis, and sites in seconds to AWS.
  ☆8,802Updated 11 months ago
• eslint-community / eslint-plugin-security
  ESLint rules for Node Security
  ☆2,251Updated last week
• gruntwork-io / terratest
  Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.
  ☆7,585Updated this week
• Arachni / arachni
  Web Application Security Scanner Framework
  ☆3,844Updated last year
• inspec / inspec
  InSpec: Auditing and Testing Framework
  ☆2,885Updated this week
• ossf / scorecard
  OpenSSF Scorecard - Security health metrics for Open Source
  ☆4,773Updated this week
• hashicorp / boundary
  Boundary enables identity-based access management for dynamic infrastructure.
  ☆3,894Updated this week
• clinicjs / node-clinic
  Clinic.js diagnoses your Node.js performance issues
  ☆5,758Updated 5 months ago
• aquasecurity / kube-bench
  Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
  ☆7,249Updated this week
• SonarSource / sonarqube
  Continuous Inspection
  ☆9,324Updated this week