The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.

🔥 A fully open source audit logs service and embeddable UI easily deployed to your own Kubernetes cluster. Brought to you by replicated.com and boxyhq.com 🚀

JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.

The goal of this project is to provide additional features on top of the existing npm audit options

The Sensitive Data Protection on AWS solution allows enterprise customers to create data catalogs, discover, protect, and visualize sensitive data across multiple AWS accounts. The solution eliminates the need for manual tagging to track sensitive data such as Personal Identifiable Information (PII) and classified information.

Kubernetes Common Configuration Scoring System

🐸 Scans any of your local Docker images for security vulnerabilities. 🐋

The Future of AI-Powered Development: Orchestr8 Transforms Claude Code Into a Complete Software Engineering Team

⛏️ An extension for Visual Studio Code that simplifies CodeQL usage and executes code scanning automatically.

Take control of you SCM security posture enforcing policy as code

A tool for exploring and investigating APIs and websites.

A rule-driven engine designed for seamless extraction of data from JavaScript files.

Unified Vulnerability Intelligence Platform

An Azure Pipelines Task for trivy

A TypeScript/JavaScript Node Template that does very little other than to demonstrate how to setup a CI/CD project.

Security Checker Agent is a comprehensive VS Code extension that automatically analyzes your code for security vulnerabilities based on the OWASP Top 10 security risks. It provides real-time security analysis, actionable suggestions, and integrates seamlessly with GitHub Copilot.

Audit your CircleCI Environment

Security