#

sast

Here are 27 public repositories matching this topic...

ajinabraham / nodejsscan

Star

nodejsscan is a static security code scanner for Node.js applications.

nodejs javascript security node static-analysis code-analysis code-review security-scanner devsecops sast node-security

Updated Jun 9, 2020
CSS

we45 / ThreatPlaybook

Star

A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration

python application-security threat-model devsecops sast dast

Updated Jun 7, 2020
HTML

AppThreat / sast-scan

Star

Open

Improve visual studio integration on Windows

prabhu commented Mar 17, 2020

It appears like Visual Studio 2019 with SARIF viewer extension is not working quite well.

Visual Studio is expecting the version attribute to be at the top! When we do to_json(sarif schema) the attributes are getting sorted alphabetically so the runs attribute is on the top and version is at the bottom. We need to find a workaround for this
Our url encode is encoding and converting the

Read more

bug good first issue help wanted

Open

AWS codebuild/codepipeline example

Open

Use uriBaseId to specify root for relative urls

1

Find more good first issues →

ajinabraham / njsscan

Star

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Updated Jun 12, 2020
JavaScript

ShiftLeftSecurity / sast-scan

Star

A Free & Open Source DevSecOps Platform

appsec license-scan devsecops sast dependency-scan

Updated Jun 12, 2020
Python

insidersec / insider

Star

Insider is the CLI project from the Insider Application Security Team for the community

cli owasp android-security ios-security security-scanner security-automation security-tools sast insider

Updated Jun 2, 2020
Go

ajinabraham / libsast

Star

Generic SAST Library

security regex static-analyzer appsec codeanalysis staticanalysis sast semgrep semanticgrep patternmatch genericsast libsast

Updated Jun 12, 2020
Python

secdec / astam-correlator

Star

Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple static/dynamic scans

security asp vulnerability pentesting sast dast astam-correlator vulnerability-consolidation

Updated Apr 13, 2019
Java

MohitDabas / codict

Star

A framework to learn and assess source code

sast

Updated Feb 3, 2020
Python

ctcampbell / veracode-ci-examples

Star

Example configurations for integrating Veracode scanning in various continuous integration systems

ci veracode sast

Updated Sep 4, 2019
Dockerfile

chuckorde / veracode-python

Star

python cli security sca veracode sast

Updated Mar 4, 2020
Python

checkmarx-ts / checkmarx-github-action

Star

Checkmarx Scan Github Action

security sast osa github-actions checkmarx

Updated Jun 10, 2020
JavaScript

logicalhacking / DASCA

Star

DASCA combines dynamic and static techniques for analysing code for finding security (i.e., vulnerabilities), safety, or reliability problems.

android java cordova eclipse static-analysis sast wala

Updated Feb 27, 2019
Java

automatesecurity / shellyzer

Star

A python script to conduct static analysis of shell scripts that can be used as a standalone script or integrated into a build pipeline.

security static-code-analysis static-analysis security-automation security-tools sast

Updated Jul 18, 2017
Python

joaquinlpereyra-ml / afip-grails

Star

Detect vulnerability in Grails projects with this SAST scanner!

groovy security static-code-analysis sast

Updated Feb 4, 2019
Groovy

binarybird / Cascade

Star

Cascade - Dataflow graphing and analysis for C#

microsoft testing security csharp graph analysis roslyn dotnet static dotnet-core dataflow vulnerability vulnerability-detection vulnerability-scanners codegraph security-tools insight security-testing sast dataflow-analysis

Updated Jun 30, 2019
C#

AppThreat / sast-scan-action

Star

GitHub action for performing SAST scanning using various oss tools such as gitleaks, bandit, findsecbugs etc

github oss sast

Updated Jan 13, 2020

avineshwar / jake

Star

An OSS Index integration to check your Conda environments for vulnerable Open Source packages

Updated May 21, 2020
Python

abzcoding / docker-pmd

Star

docker image for PMD SAST

Updated Oct 9, 2019
Dockerfile

ajinabraham / njsscan-action

Star

nodejsscan Github Action

nodejs code-review action staticanalysis sast githubactions nodejsscan njsscan njsscan-action code-anaysis nodesast

Updated May 23, 2020
Dockerfile

federacy / scan-action

Star

Github Action for security scanning utilizing Salus by Coinbase

security continuous-integration static-analysis sast salus security-scanning github-actions dependency-scanning

Updated Mar 18, 2020
Shell

NextSecurity / sast-scanner-modified

Star

SAST Scanner Modified - Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!

static-code-analysis static-analysis application-security secure-coding sast secure-coding-practices static-code-and-dynamic-analysis code-security secure-code-framework sast-framework

Updated Mar 23, 2020
Python

Hack23 / talks

Star

How to secure your development pipeline with static application security test (SAST) / Dynamic application security test (DAST), software composition analysis (SCA) using Sonarqube.

maven sonarqube sca devsecops sast dast

Updated Sep 20, 2019

Saluki / eslint-workshop-2020

Star

ESLint backbone repository for workshop

nodejs workshop eslint code-quality sast code-security

Updated Jun 3, 2020
JavaScript

m3ssap0 / massive-appscan-prepare

Star

This is a Python 2.7 script that can be used to launch massive 'appscan prepare' commands.

prepare ibm python27 sast asoc appscan irx

Updated Dec 5, 2018
Python

whitespots / docs

Star

Gitbook

security-audit application-security appsec security-automation dependency-checker sast dast security-assesment

Updated Jun 1, 2020

cxpsemea / cxsast_custom_reporting

Star

A CxSAST satellite application that allows users to generate custom reporting

report sast checkmarx cxsast

Updated May 6, 2020
HTML

Improve this page

Add a description, image, and links to the sast topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the sast topic, visit your repo's landing page and select "manage topics."

You can’t perform that action at this time.