GitHub topics: code-scanning

Repositories

shivasurya/code-pathfinder

Code Pathfinder, the open-source alternative to GitHub CodeQL built with GoLang. Built for advanced structural search, derive insights, find vulnerabilities in code.

Language: Go - Size: 10.6 MB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 58 - Forks: 7

codescan-ai/codescan

CodeScanAI is an open source tool that utilizes powerful AI models (OpenAI, Gemini, and even self-hosted servers) to scan your codebase for possible security vulnerabilities.

Language: Python - Size: 62.5 KB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 19 - Forks: 2

JetBrains/qodana-cli

🔧 JetBrains Qodana’s official command line tool

Language: Go - Size: 2.66 MB - Last synced at: about 8 hours ago - Pushed at: 5 days ago - Stars: 191 - Forks: 28

advanced-security/advanced-security-material

Language: Shell - Size: 263 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 70 - Forks: 25

JetBrains/qodana-action

⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

Language: JavaScript - Size: 22.3 MB - Last synced at: 7 days ago - Pushed at: 8 days ago - Stars: 278 - Forks: 41

naivesystems/analyze

NaiveSystems Analyze is a static analysis tool for code security and compliance.

Language: C++ - Size: 236 MB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 181 - Forks: 25

ewg-atmosera/ghas-for-developers

GHAS for Developers Course

Size: 1.54 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 2 - Forks: 0

github/codeql-action

Actions for running CodeQL analysis

Language: TypeScript - Size: 163 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 1,240 - Forks: 357

skills/secure-code-game

A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

Language: Python - Size: 286 KB - Last synced at: 11 days ago - Pushed at: about 1 month ago - Stars: 2,258 - Forks: 256

github/codeql-coding-standards

This repository contains CodeQL queries and libraries which support various Coding Standards.

Language: CodeQL - Size: 10.3 MB - Last synced at: 9 days ago - Pushed at: 11 days ago - Stars: 144 - Forks: 61

gacts/gitleaks

🚀 GitHub action for running gitleaks/gitleaks (no license key is required)

Language: JavaScript - Size: 5.92 MB - Last synced at: 7 days ago - Pushed at: 19 days ago - Stars: 16 - Forks: 0

Finatext/gls

Support gitleaks config development and extend some gitleaks features.

Language: Rust - Size: 293 KB - Last synced at: 13 days ago - Pushed at: 13 days ago - Stars: 14 - Forks: 0

securesauce/precli-action

GitHub Action to run Precaution SAST

Size: 5.86 KB - Last synced at: 12 days ago - Pushed at: 6 months ago - Stars: 2 - Forks: 1

PyCQA/bandit-action

GitHub Action to run Bandit

Size: 29.3 KB - Last synced at: 12 days ago - Pushed at: 5 months ago - Stars: 16 - Forks: 7

laminas/laminas-code

Extensions to the PHP Reflection API, static code scanning, and code generation

Language: PHP - Size: 4.62 MB - Last synced at: 4 days ago - Pushed at: 2 months ago - Stars: 1,872 - Forks: 83

kereva-dev/kereva-scanner

Code scanner to check for issues in prompts and LLM calls

Language: Python - Size: 7.12 MB - Last synced at: 19 days ago - Pushed at: 19 days ago - Stars: 29 - Forks: 2

haskell-actions/hlint-scan

Scan Haskell code with HLint.

Language: Haskell - Size: 636 KB - Last synced at: 4 days ago - Pushed at: 20 days ago - Stars: 21 - Forks: 2

zkoppert/advanced-security-enforcer

A GitHub action for organizations that enables advanced security code scanning on all new repos

Language: Python - Size: 129 KB - Last synced at: 2 days ago - Pushed at: 21 days ago - Stars: 39 - Forks: 6

JetBrains/Qodana

📝 Source repository of Qodana Help

Size: 186 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 393 - Forks: 72

sozelfist/starter-workflows Fork of actions/starter-workflows

Accelerating new GitHub Actions workflows

Language: TypeScript - Size: 3.36 MB - Last synced at: 28 days ago - Pushed at: 28 days ago - Stars: 1 - Forks: 1

Gokkulamoorthy/secure-vigil

An AI-powered code security analysis platform that helps developers identify and fix security vulnerabilities through comprehensive scanning, smart mitigation, and detailed reporting.

Language: Python - Size: 378 KB - Last synced at: 28 days ago - Pushed at: 28 days ago - Stars: 0 - Forks: 0

hounddogai/hounddog-test-healthcare-app

Test web application with built-in privacy issues to demonstrate the capabilities of HoundDog.ai code scanner.

Language: TypeScript - Size: 1.26 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 1 - Forks: 10

GeekMasher/advanced-security-compliance 📦

GitHub Advance Security Compliance Action

Language: Python - Size: 490 KB - Last synced at: 3 days ago - Pushed at: over 2 years ago - Stars: 133 - Forks: 27

Codety Scanner is a comprehensive code scanner designed to detect code issues for 30+ programming languages and IaC frameworks. It embeds more than 6,000 code analysis rules and can detect code smells, vulnerable code, secrets in the code, performance issues, style violations, and more.

Language: Java - Size: 71.2 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 46 - Forks: 23

owenrumney/squealer

Telling tales on you for leaking secrets!

Language: Go - Size: 49.5 MB - Last synced at: 9 days ago - Pushed at: about 1 month ago - Stars: 232 - Forks: 13

G-Research/fsharp-analyzers

Analyzers for F#

Language: F# - Size: 427 KB - Last synced at: 22 days ago - Pushed at: 2 months ago - Stars: 18 - Forks: 1

Boomtoknlab/boom-js-action Fork of Boomtokn/boom-js-action

GitHub Action for automating Boom Token workflows using JavaScript. This action simplifies tasks like smart contract interactions, token analytics, and liquidity management for Boom Token on multiple networks.

Language: JavaScript - Size: 274 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 1 - Forks: 0

fguisso/introducao-ao-code-scanning Fork of skills/introduction-to-codeql

Introdução Guiada ao Code Scanning

Language: Python - Size: 2.46 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 2 - Forks: 0

iosifache/osv-scanner-snap

The OSV-Scanner vulnerability scanner as a snap 📦

Size: 195 KB - Last synced at: 3 days ago - Pushed at: 6 months ago - Stars: 4 - Forks: 1

advanced-security/codeql-bundle-action

Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations

Language: Shell - Size: 14 MB - Last synced at: about 17 hours ago - Pushed at: 12 months ago - Stars: 25 - Forks: 6

mosowaz/Checkov-Terraform

Terraform code scanning script with Checkov. Using their default installation and configuration

Language: Shell - Size: 11.7 KB - Last synced at: about 2 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

eliasmoflag/xscan

Simple header-only IDA-style code scanner

Language: C++ - Size: 5.86 KB - Last synced at: 7 days ago - Pushed at: 3 months ago - Stars: 4 - Forks: 0

CodeThreat/codethreat-github-action

CodeThreat GitHub Action integrates with GitHub to perform code security tests on your code. It supports a variety of languages and frameworks, providing detailed security scans to identify potential issues.

Language: JavaScript - Size: 1.94 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 4 - Forks: 0

nmichlo/pydependence

🕵️🐍 Generate requirements.txt and pyproject.toml extras across modules, with configurable starting points, using import graph traversal and the python AST. Fully configurable and works with pre-commit.

Language: Python - Size: 190 KB - Last synced at: about 7 hours ago - Pushed at: 10 months ago - Stars: 2 - Forks: 0

thomasbiege/code

my code

Language: HTML - Size: 24.7 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 9 - Forks: 2

reactive-firewall/python-bandit-scan Fork of parroty/python-bandit-scan

GitHub Action for Python Bandit SAST

Size: 39.1 KB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 3 - Forks: 0

austenstone/security-export

GitHub Action to export GitHub security alerts

Language: TypeScript - Size: 6.92 MB - Last synced at: 14 days ago - Pushed at: 5 months ago - Stars: 1 - Forks: 0

php-gettext/PHP-Scanner

PHP code scanner for gettext

Language: PHP - Size: 43.9 KB - Last synced at: 10 days ago - Pushed at: 5 months ago - Stars: 14 - Forks: 6

CodeThreat/codethreat-jenkins-plugin

CodeThreat with Jenkins, allowing you to identify and rectify security issues effectively. The repository also provides a sample Jenkins Pipeline script for your guidance. To use this tool, you need a CodeThreat account.

Language: Java - Size: 128 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 3 - Forks: 5

justinchuby/lintrunner-adapters

Adapters and tools for lintrunner

Language: Python - Size: 282 KB - Last synced at: 10 days ago - Pushed at: 3 months ago - Stars: 5 - Forks: 2

hudangwei/codemillx

codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)

Language: Go - Size: 51.8 KB - Last synced at: 5 months ago - Pushed at: about 3 years ago - Stars: 208 - Forks: 18

iosifache/semgrep-snap

The Semgrep code scanner as a snap 📦

Size: 29.3 KB - Last synced at: 3 days ago - Pushed at: 6 months ago - Stars: 1 - Forks: 2

andreas-kupries/kettle

Mirror of kettle @ core.tcl.tk/akupries -- A build system for pure Tcl, and critcl packages

Language: Tcl - Size: 1.82 MB - Last synced at: 20 days ago - Pushed at: 7 months ago - Stars: 8 - Forks: 0

darkwizard242/ansible-role-terrascan

Ansible role for 'terrascan'. Available on Ansible Galaxy.

Language: Python - Size: 43 KB - Last synced at: 20 days ago - Pushed at: 7 months ago - Stars: 2 - Forks: 0

advanced-security/monorepo-filtering-workaround

A monorepo filtering workaround for GitHub Advanced Security Code Scanning using renaming of the scanning tool in an Actions workflow

Language: Java - Size: 94.7 KB - Last synced at: 16 days ago - Pushed at: 28 days ago - Stars: 10 - Forks: 6

ISnackable/G8-CodeQL

DISM Final Year Project, Security Software Tool Development, CodeQL Scanner

Language: JavaScript - Size: 57.6 MB - Last synced at: 22 days ago - Pushed at: over 3 years ago - Stars: 3 - Forks: 0

advanced-security/filter-sarif

GitHub Action for filtering Code Scanning alerts by path and id

Language: Java - Size: 61.5 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 21 - Forks: 8

mbg/sarif

Haskell library for reading and writing SARIF files

Language: Haskell - Size: 29.3 KB - Last synced at: 20 days ago - Pushed at: 10 months ago - Stars: 1 - Forks: 2

emanuelgalvao/Pantry

Aplicativo para controle da validade de itens que o usuário tem em casa. Desenvolvido utilizando Kotlin, MVVM, Firebase, Room Database e Retrofit.

Language: Kotlin - Size: 11.7 MB - Last synced at: about 1 year ago - Pushed at: over 3 years ago - Stars: 0 - Forks: 0

b4dnewz/wpsploit

Aggressive regex based code scanner for Wordpress Themes/Plugins

Language: Python - Size: 7.81 KB - Last synced at: 13 days ago - Pushed at: over 6 years ago - Stars: 5 - Forks: 0

austimkelly/secretsynth

A secret scanner wrapper to aggregate results across multiple secret scanning tools

Language: Python - Size: 439 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 3 - Forks: 0

SkyN9ne/CodeQL Fork of github/codeql

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

Language: CodeQL - Size: 183 MB - Last synced at: about 1 year ago - Pushed at: almost 2 years ago - Stars: 4 - Forks: 0

dec0dOS/amazing-github-template

🚀 Useful README.md, LICENSE, CONTRIBUTING.md, CODE_OF_CONDUCT.md, SECURITY.md, GitHub Issues, Pull Requests and Actions templates to jumpstart your projects.

Language: Python - Size: 82 KB - Last synced at: about 1 year ago - Pushed at: over 3 years ago - Stars: 406 - Forks: 218

iosifache/cppcheck-snap

The Cppcheck C/C++ static code analyser in a Snap 📦

Size: 269 KB - Last synced at: 3 days ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0

JDGrimes/wp-deprecated-code-scanner

Scans for all deprecated functions in a codebase; scans for the functions themselves, *not* usages

Language: PHP - Size: 21.5 KB - Last synced at: 19 days ago - Pushed at: over 6 years ago - Stars: 6 - Forks: 1

php-gettext/JS-Scanner

Javascript code scanner for gettext

Language: PHP - Size: 18.6 KB - Last synced at: 10 days ago - Pushed at: about 3 years ago - Stars: 5 - Forks: 1

niborium/CodeStandardScanner

Code Standard Scanner is a lightweight .NET (CLI) console application that analyzes .TS and .TSX files for adherence to specified code standards. This is just an example and can be modified for your needs (any file extentions or any rules). Easy to integrate with CI/CD Pipelines, Webpack or seperate standalone. Written by Niborium

Language: C# - Size: 5.36 MB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 1 - Forks: 0