Giters
Josiah Bruner (JosiahOne)

JosiahOne

Geek Repo

19

followers

37

following

147

stars

Company:@Jellyfish-AI

Location:Ann Arbor, MI

Home Page:https://josiahbruner.com

Twitter:@JosiahBruner

Github PK Tool:Github PK Tool

Josiah Bruner's starred repositories

trivy

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Language:GoLicense:Apache-2.0Stargazers:22429Issues:0Issues:0

cloud-custodian

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

Language:PythonLicense:Apache-2.0Stargazers:5321Issues:0Issues:0

Lol

Λ ⚬ λ: Functional Lattice Cryptography

Language:HaskellStargazers:224Issues:0Issues:0

CrossHair

An analysis tool for Python that blurs the line between testing and type systems.

Language:PythonLicense:NOASSERTIONStargazers:987Issues:0Issues:0

hypothesis

Hypothesis is a powerful, flexible, and easy to use library for property-based testing.

Language:PythonLicense:NOASSERTIONStargazers:7438Issues:0Issues:0

incydr_python

Incydr Python SDK

Language:PythonLicense:MITStargazers:8Issues:0Issues:0

prefect

Prefect is a workflow orchestration framework for building resilient data pipelines in Python.

Language:PythonLicense:Apache-2.0Stargazers:15560Issues:0Issues:0

saas-attacks

Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown

License:CC-BY-4.0Stargazers:980Issues:0Issues:0

uptane

Uptane, security framework for automotive updates

Language:PythonLicense:MITStargazers:9Issues:0Issues:0

macaron

Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD services. It can be used to prevent supply chain attacks or check conformance to frameworks, such as SLSA.

Language:PythonLicense:UPL-1.0Stargazers:114Issues:0Issues:0

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoLicense:MITStargazers:18893Issues:0Issues:0

snyk-delta

Language:TypeScriptLicense:NOASSERTIONStargazers:18Issues:0Issues:0

detect-secrets

An enterprise friendly way of detecting and preventing secrets in code.

Language:PythonLicense:Apache-2.0Stargazers:3653Issues:0Issues:0

narrow

Low-effort reachability analysis for third-party code vulnerabilities.

Language:PythonLicense:Apache-2.0Stargazers:1Issues:0Issues:0

deal

🤝 Design by contract for Python. Write bug-free code. Add a few decorators, get static analysis and tests for free.

Language:PythonLicense:MITStargazers:718Issues:0Issues:0

d2

D2 is a modern diagram scripting language that turns text to diagrams.

Language:GoLicense:MPL-2.0Stargazers:16291Issues:0Issues:0

0wned

Code execution via Python package installation.

Language:PythonLicense:GPL-3.0Stargazers:168Issues:0Issues:0

yorkshire

Yorkshire is your friend, yorkshire checks Python's requirements files for a possible dependency confusion.

Language:PythonLicense:Apache-2.0Stargazers:7Issues:0Issues:0

LibCST

A concrete syntax tree parser and serializer library for Python that preserves many aspects of Python's abstract syntax tree

Language:PythonLicense:NOASSERTIONStargazers:1487Issues:0Issues:0

narrow

Low-effort reachability analysis for third-party code vulnerabilities.

Language:PythonLicense:Apache-2.0Stargazers:19Issues:0Issues:0

infracost

Cloud cost estimates for Terraform in pull requests💰📉 Shift FinOps Left!

Language:GoLicense:Apache-2.0Stargazers:10739Issues:0Issues:0

MuseScore

MuseScore is an open source and free music notation software. For support, contribution, bug reports, visit MuseScore.org. Fork and make pull requests!

Language:C++License:NOASSERTIONStargazers:11939Issues:0Issues:0

osv-scanner

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Language:GoLicense:Apache-2.0Stargazers:6071Issues:0Issues:0

steady

Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/

Language:JavaLicense:Apache-2.0Stargazers:518Issues:0Issues:0

s2c2f

The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously improve the S2C2F guide which outlines and defines how to securely consume Open Source Software (OSS) dependencies into the developer’s workflow.

License:NOASSERTIONStargazers:173Issues:0Issues:0

website

Language:HTMLStargazers:1Issues:0Issues:0

cargo-license

Cargo subcommand to see license of dependencies

Language:RustLicense:MITStargazers:411Issues:0Issues:0

latexify_py

A library to generate LaTeX expression from Python code.

Language:PythonLicense:Apache-2.0Stargazers:7120Issues:0Issues:0

kata-containers

Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs. https://katacontainers.io/

Language:RustLicense:Apache-2.0Stargazers:5216Issues:0Issues:0

guac

GUAC aggregates software security metadata into a high fidelity graph database.

Language:GoLicense:Apache-2.0Stargazers:1234Issues:0Issues:0