#
sast
Here are 42 public repositories matching this topic...
nodejsscan is a static security code scanner for Node.js applications.
nodejs
javascript
security
node
static-analysis
code-analysis
code-review
security-scanner
devsecops
sast
node-security
-
Updated
Oct 24, 2020 - CSS
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
-
Updated
Jul 12, 2020 - Python
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
nodejs
javascript
android
kotlin
swift
cli
ios
csharp
maven
dotnet
static-analysis
owasp
static-analyzer
android-security
ios-security
security-scanner
security-automation
security-tools
sast
insider
-
Updated
Oct 21, 2020 - Go
prabhu
commented
Jul 9, 2020
It will be a fun exercise to make scan work for mono repos such as https://github.com/swapnil-linux/spring-boot-examples
In theory, this can be achieved using a bit of bash with the new scan AppImage.
Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!
-
Updated
Sep 4, 2020 - Python
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
nodejs
python
security
semantic
node
linter
static-analysis
expressjs
static-analyzer
cicd
codereview
electronjs
appsec
staticanalysis
security-tools
devsecops
sast
nodesecurity
semgrep
codescanner
-
Updated
Oct 24, 2020 - JavaScript
基于pytorch的ocr算法库,包括 psenet, pan, dbnet, sast , crnn
-
Updated
Oct 22, 2020 - C++
r0hi7
commented
Jun 27, 2020
Scan the docker network for open ports and vulnerable services.
wiliansilvazup
commented
Sep 30, 2020
What would you like to be added:
Add link of file with vulnerability when print output in terminal
File to edit
https://github.com/ZupIT/horusec/blob/master/horusec-cli/internal/controllers/printresults/print_results.go#L220
Generic SAST Library
security
regex
static-analyzer
appsec
codeanalysis
staticanalysis
sast
semgrep
semanticgrep
patternmatch
genericsast
libsast
-
Updated
Oct 24, 2020 - Python
JavaScript & Node.js open-source SAST scanner. A static analysis of detecting most common malicious patterns.
-
Updated
Sep 27, 2020 - JavaScript
Checkmarx Scan Github Action
security
scanning
appsec
sca
sast
osa
checkmarx-sast
github-actions
checkmarx
security-vulnerabilities
checkmarx-server
-
Updated
Oct 19, 2020 - JavaScript
Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple static/dynamic scans
-
Updated
Apr 13, 2019 - Java
GitHub Action to set up Fortify ScanCentral Client
github
setup
security
static-analysis
application-security
action
appsec
fortify
sast
github-action
fortify-ssc
fortify-on-demand
-
Updated
Oct 1, 2020 - TypeScript
Official Github Action for Insider
nodejs
javascript
android
kotlin
java
swift
csharp
dotnet
owasp
static-analyzer
security-scanner
security-tools
sast
github-actions
insider
actios
-
Updated
Oct 21, 2020 - TypeScript
GitHub Action to set up the Fortify on Demand (FoD) upload utility
github
setup
security
static-analysis
uploader
application-security
action
appsec
fortify
sast
github-action
fortify-on-demand
-
Updated
Oct 9, 2020 - TypeScript
nodejsscan Github Action
nodejs
code-review
action
staticanalysis
sast
githubactions
nodejsscan
njsscan
njsscan-action
code-anaysis
nodesast
-
Updated
May 23, 2020 - Dockerfile
A python script to conduct static analysis of shell scripts that can be used as a standalone script or integrated into a build pipeline.
-
Updated
Jul 18, 2017 - Python
Github Action for security scanning utilizing Salus by Coinbase
security
continuous-integration
static-analysis
sast
salus
security-scanning
github-actions
dependency-scanning
-
Updated
Mar 18, 2020 - Shell
Detect vulnerability in Grails projects with this SAST scanner!
-
Updated
Feb 4, 2019 - Groovy
Cascade - Dataflow graphing and analysis for C#
microsoft
testing
security
csharp
graph
analysis
roslyn
dotnet
static
dotnet-core
dataflow
vulnerability
vulnerability-detection
vulnerability-scanners
codegraph
security-tools
insight
security-testing
sast
dataflow-analysis
-
Updated
Jun 30, 2019 - C#
Improve this page
Add a description, image, and links to the sast topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the sast topic, visit your repo's landing page and select "manage topics."
semgrep v0.28.0 fails to parse some files from popular PHP Frameworks/Libraries.
To reproduce, download the latest version / master code via the link given and run semgrep again it