code-scanning

There are 3 repositories under code-scanning topic.

• skills / secure-code-game

  A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

  code-scanningcode-securitycodeqlskills-course
  Language:JavaScript 2485

• laminas / laminas-code

  Extensions to the PHP Reflection API, static code scanning, and code generation

  code-generationcode-scanningreflection-api
  Language:PHP 1872

• github / codeql-action

  Actions for running CodeQL analysis

  codeqlactionssemmle-qlcode-scanningadvanced-securityci
  Language:TypeScript 1358

• dec0dOS / amazing-github-template

  🚀 Useful README.md, LICENSE, CONTRIBUTING.md, CODE_OF_CONDUCT.md, SECURITY.md, GitHub Issues, Pull Requests and Actions templates to jumpstart your projects.

  readmedocumentationdocsdocs-generatordocumentation-generatortemplategithubissuesprbug-trackerlabelscode-scanningpull-requestspull-requests-templategithub-actionsissuecode-of-conductcode-of-conduct-templatemerge-request
  Language:Python 590
• Qodana

  JetBrains / Qodana

  📝 Source repository of Qodana Help

  cicode-qualitycode-reviewcode-scanningcontinuous-integrationjavajavascriptjetbrainskotlinphppythonstatic-analysisstatic-code-analysistypescript
  398

• JetBrains / qodana-action

  ⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

  actionsazure-extensionsazure-pipelinescode-qualitycode-reviewcode-scanningdevsecopsdotnetgithub-actionsgojavajavascriptkotlinphppythonqodanasarifstatic-analysisstatic-code-analysistypescript
  Language:JavaScript 276

• owenrumney / squealer

  Telling tales on you for leaking secrets!

  golangsecretssecurity-toolsawsstatic-analysisgit-toolcode-scanningleak-detectionsarif-reportleaking-secretshacktoberfestdevsecopssecuritygo
  Language:Go 232

• hudangwei / codemillx

  codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)

  codeqlcodeql-modelscode-scanning
  Language:Go 205

• naivesystems / analyze

  NaiveSystems Analyze is a static analysis tool for code security and compliance.

  autosarmisra-cstatic-analysismisracertcode-scanningcoding-standardscpp14cppcheckfunctional-safetyiso26262
  Language:C++ 191

• JetBrains / qodana-cli

  🔧 JetBrains Qodana’s official command line tool

  ciclicode-qualitycode-reviewcode-scanningdevsecopsjavajavascriptkotlinphppythonqodanasarifsarif-reportstatic-code-analysistypescript
  Language:Go 190

• github / codeql-coding-standards

  This repository contains CodeQL queries and libraries which support various Coding Standards.

  code-scanningcodeqlcoding-standardscpp14functional-safetyiso26262autosarcertmisra
  Language:CodeQL 168

• GeekMasher / advanced-security-compliance

  GitHub Advance Security Compliance Action

  code-scanningdevsecopsghassecuritysecurity-automation
  Language:Python 133

• advanced-security / advanced-security-material

  securityadvanced-securityadvanced-security-trainingcodeqlcode-scanning
  Language:Shell 74

• shivasurya / code-pathfinder

  Code Pathfinder, the open-source alternative to GitHub CodeQL built with GoLang. Built for advanced structural search, derive insights, find vulnerabilities in code.

  sastsearchsecuritysecurity-toolsstructural-searchtree-sittercodeqlapplication-securitycode-scanninggolang
  Language:Go 67

• kereva-dev / kereva-scanner

  Code scanner to check for issues in prompts and LLM calls

  ai-evaluationcode-scanninghallucinationllmllm-evaluationllm-securityowasp-llm-top-10prompt-injectionllm-performanceevaluationlinterred-teamingsecurityaiai-securityai-code-reviewai-performanceai-red-teamingcli
  Language:Python 54
• codety-scanner

  codetyio / codety-scanner

  Codety Scanner is a comprehensive code scanner designed to detect code issues for 30+ programming languages and IaC frameworks. It embeds more than 6,000 code analysis rules and can detect code smells, vulnerable code, secrets in the code, performance issues, style violations, and more.

  codecode-scannercode-scanningscannersecuritysecurity-scannercodety
  Language:Java 46

• zkoppert / advanced-security-enforcer

  A GitHub action for organizations that enables advanced security code scanning on all new repos

  advanced-securitycode-scanningcodeqlactionsgithub-actionshacktoberfest
  Language:Python 41

• advanced-security / filter-sarif

  GitHub Action for filtering Code Scanning alerts by path and id

  code-scanninggithub-advanced-securitysarif
  Language:Java 26

• advanced-security / codeql-bundle-action

  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations

  code-scanningcodeqlsecurity
  Language:Shell 25

• haskell-actions / hlint-scan

  Scan Haskell code with HLint.

  actionscode-scanninghaskelllint
  Language:Haskell 21

• G-Research / fsharp-analyzers

  Analyzers for F#

  analyzeranalyzerscode-qualitycode-scanningdotnetfsharp
  Language:F# 19

• gacts / gitleaks

  🚀 GitHub action for running gitleaks/gitleaks (no license key is required)

  code-scanninggithub-actionsgitleakssecurity
  Language:JavaScript 16
• bandit-action

  PyCQA / bandit-action

  GitHub Action to run Bandit

  banditcode-scanningcode-scanning-enabledcode-scanning-readygithub-actiongithub-actions
  16

• Finatext / gls

  Support gitleaks config development and extend some gitleaks features.

  code-scanninggitleakssecrets-detectionsecrets-scan
  Language:Rust 15

• codescan-ai / codescan

  CodeScanAI is an open source tool that utilizes powerful AI models (OpenAI, Gemini, and even self-hosted servers) to scan your codebase for possible security vulnerabilities.

  aiautomationcode-scanningsecurity-tools
  Language:Python 14

• php-gettext / PHP-Scanner

  PHP code scanner for gettext

  gettexti18ntranslationcode-scanning
  Language:PHP 14

• advanced-security / monorepo-filtering-workaround

  A monorepo filtering workaround for GitHub Advanced Security Code Scanning using renaming of the scanning tool in an Actions workflow

  actions-workflowadvanced-securitycodeqlghasmonoreposastcode-scanningsarif
  Language:Java 10

• fguisso / introducao-ao-code-scanning

  Introdução Guiada ao Code Scanning

  code-scanningskill-course
  Language:Python 9
• code-scanning-playground

  swinton / code-scanning-playground

  A template repository to help you get started with Code Scanning on GitHub

  githubcode-scanningsarifexamplegithub-actionseslint
  Language:C# 9

• thomasbiege / code

  my code

  forensicsfuzzerfuzz-testingintrusion-detection-enviromentintrusion-detection-systemcode-scanningsecure-codingspiderbruteforcerest-apinetwork-securitynetwork-analysisfirewallbadusbusb-rubber-ducky
  Language:HTML 9

• andreas-kupries / kettle

  Mirror of kettle @ core.tcl.tk/akupries -- A build system for pure Tcl, and critcl packages

  build-systemcode-scanningcritcltcl
  Language:Tcl 8

• austimkelly / secretsynth

  A secret scanner wrapper to aggregate results across multiple secret scanning tools

  code-scanningghasgitleakssecretssecrets-detectionsecrets-scannertrufflehog
  Language:Python 7

• JDGrimes / wp-deprecated-code-scanner

  Scans for all deprecated functions in a codebase; scans for the functions themselves, *not* usages

  wordpresscodesniffercode-scanning
  Language:PHP 6

• b4dnewz / wpsploit

  Aggressive regex based code scanner for Wordpress Themes/Plugins

  static-analysiscode-scanningphpwordpressvulnerability-scanner
  Language:Python 5

• justinchuby / lintrunner-adapters

  Adapters and tools for lintrunner

  cilintingsariflintrunnercode-scanningclippyflake8lintlinterpythonruffrustfmtformatter
  Language:Python 5

• php-gettext / JS-Scanner

  Javascript code scanner for gettext

  i18ntranslationgettextcode-scanning
  Language:PHP 5