k3s-on-prem-productionPlaybooks needed to set up an on-premises K3s cluster and securize it
Stars: ✭ 108 (-12.9%)
Docker SlimDockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)
Stars: ✭ 11,712 (+9345.16%)
altprobecollector for XDR and security posture service
Stars: ✭ 62 (-50%)
vhivevHive: Open-source framework for serverless experimentation
Stars: ✭ 134 (+8.06%)
vilicusVilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.
Stars: ✭ 82 (-33.87%)
opa-docker-authzA policy-enabled authorization plugin for Docker.
Stars: ✭ 67 (-45.97%)
unimportunimport is a Go static analysis tool to find unnecessary import aliases.
Stars: ✭ 64 (-48.39%)
logifixFixing static analysis violations in Java source code using Datalog
Stars: ✭ 17 (-86.29%)
vim-phpstanA Vim plugin for PHPStan - https://github.com/phpstan/phpstan. It calls `phpstan` to do static analysis of your PHP code and displays the errors in Vim's quickfix list.
Stars: ✭ 26 (-79.03%)
secreterKubernetes operator and CLI tool for encrypting and managing Kubernetes secrets
Stars: ✭ 69 (-44.35%)
phpstan.elInterface to PHPStan (PHP static analyzer)
Stars: ✭ 22 (-82.26%)
phpstanPHP Static Analysis in Github Actions.
Stars: ✭ 41 (-66.94%)
interceptINTERCEPT / Policy as Code Static Analysis Auditing / SAST
Stars: ✭ 54 (-56.45%)
save-cloudCluster-based cloud mechanism for running SAVE framework
Stars: ✭ 30 (-75.81%)
deps-inferInfer mvn deps from sources
Stars: ✭ 36 (-70.97%)
nestifDetect deeply nested if statements in Go source code
Stars: ✭ 30 (-75.81%)
gotchaGo Taint CHeck Analyser
Stars: ✭ 40 (-67.74%)
secret configCentralized Configuration and Secrets Management for Ruby and Rails applications.
Stars: ✭ 15 (-87.9%)
ScalpelScalpel: The Python Static Analysis Framework
Stars: ✭ 176 (+41.94%)
falco-exporterPrometheus Metrics Exporter for Falco output events
Stars: ✭ 84 (-32.26%)
Fortran-ToolsFortran compilers, preprocessors, static analyzers, transpilers, IDEs, build systems, etc.
Stars: ✭ 31 (-75%)
mllint`mllint` is a command-line utility to evaluate the technical quality of Python Machine Learning (ML) projects by means of static analysis of the project's repository.
Stars: ✭ 67 (-45.97%)
riskybirdRegular expression authors best friend
Stars: ✭ 48 (-61.29%)
phpstan-netteNette Framework class reflection extension for PHPStan & framework-specific rules
Stars: ✭ 87 (-29.84%)
klaraAutomatic test case generation for python and static analysis library
Stars: ✭ 250 (+101.61%)
apparmor.dFull set of AppArmor profiles (~ 1400 profiles)
Stars: ✭ 32 (-74.19%)
goreporterA Golang tool that does static analysis, unit testing, code review and generate code quality report.
Stars: ✭ 3,019 (+2334.68%)
auraPython source code auditing and static analysis on a large scale
Stars: ✭ 101 (-18.55%)
easyseccompDSL language to write seccomp filters
Stars: ✭ 21 (-83.06%)
go-mndMagic number detector for Go.
Stars: ✭ 153 (+23.39%)
prancer-compliance-testThis repository includes cloud security policies for IaC and live resources.
Stars: ✭ 32 (-74.19%)
vault-sidecar-injectorKubernetes admission webhook for secure, seamless and dynamic handling of secrets in your applications
Stars: ✭ 55 (-55.65%)
rstaticAn R package for static analysis of R code.
Stars: ✭ 32 (-74.19%)
kube-microcosmAn example of a kubernetes cluster appropriate for a startup company
Stars: ✭ 61 (-50.81%)
shell-linterA Github Action for ShellCheck
Stars: ✭ 58 (-53.23%)
gqlanalysisgqlanalysis makes easy to develop static analysis tools for GraphQL in Go.
Stars: ✭ 36 (-70.97%)
fury-kubernetes-opaKubernetes Fury OPA. Policy enforcement for your Kubernetes Cluster
Stars: ✭ 34 (-72.58%)
posteeSimple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.
Stars: ✭ 160 (+29.03%)
PhpCodeAnalyzerPhpCodeAnalyzer scans codebase and analyzes which non-built-in php extensions used
Stars: ✭ 91 (-26.61%)
deflekindex and API RBAC for Elasticsearch and Kibana via reverse proxy. DEPRECATED
Stars: ✭ 13 (-89.52%)
flextoolC++ compile-time programming (serialization, reflection, code modification, enum to string, better enum, enum to json, extend or parse language, etc.)
Stars: ✭ 32 (-74.19%)
twlyWanna get DRY? Static analysis tool for detecting repeat code.
Stars: ✭ 42 (-66.13%)
adelaideThe SECBIT Static Analysis Extension to Solidity Compiler
Stars: ✭ 16 (-87.1%)
OCCAMOCCAM: Object Culling and Concretization for Assurance Maximization
Stars: ✭ 20 (-83.87%)
kccA Small C Compiler
Stars: ✭ 18 (-85.48%)
phpstan-dbaPHPStan based SQL static analysis and type inference for the database access layer
Stars: ✭ 163 (+31.45%)
sonar-scalaA free and open-source SonarQube plugin for static code analysis of Scala projects.
Stars: ✭ 113 (-8.87%)
go-perfguardCPU-guided performance analyzer for Go
Stars: ✭ 58 (-53.23%)
kube-beaconOpen Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
Stars: ✭ 60 (-51.61%)