sonatype-nexus-community / auditjs
Audits an NPM package.json file to identify known vulnerabilities.
☆223Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for auditjs
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆124Updated 2 weeks ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆73Updated last week
- TSLint security rules☆70Updated 4 years ago
- Software Component Verification Standard (SCVS)☆134Updated 6 months ago
- Zap baseline scanner in Docker with authentication☆104Updated 5 months ago
- A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.☆131Updated 2 years ago
- Find security vulnerabilities in open source npm packages while you code☆202Updated 2 years ago
- ☆46Updated this week
- Scan your code for security misconfiguration, search for passwords and secrets.☆637Updated last year
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆375Updated this week
- Application Security Automation☆522Updated last year
- CLI component of OWASP PurpleTeam☆124Updated 10 months ago
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.☆320Updated 2 years ago
- SonarQube Scanner for the JavaScript world☆176Updated last year
- OWASP Foundation Web Repository☆47Updated last week
- Repo to hold mapping of user-security-stories☆113Updated 5 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆274Updated 2 weeks ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆147Updated 4 years ago
- a javascript static security analysis tool☆585Updated 9 years ago
- Fuzz testing for HTTP APIs with Artillery.io 🌪☆59Updated 2 years ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆173Updated 3 months ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆187Updated 6 years ago
- Security design pattern support for Node.js☆24Updated 5 years ago
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆363Updated this week
- A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets☆49Updated 2 years ago
- An open source, online threat modelling tool from OWASP☆483Updated 4 months ago
- GitHub action to generate a CycloneDX SBOM for Node.js☆20Updated 3 months ago
- The OWASP Secure Headers Project☆135Updated last week
- Some thoughts on how Node.js might respond to a changing security environment☆172Updated 5 years ago
- SAMM stands for Software Assurance Maturity Model.☆397Updated 2 years ago