code-scanning

There are 1 repository under code-scanning topic.

• skills / secure-code-game

  A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

  code-scanningcode-securitycodeqlskills-course
  Language:Python 1888

• laminas / laminas-code

  Extensions to the PHP Reflection API, static code scanning, and code generation

  code-generationcode-scanningreflection-api
  Language:PHP 1823

• github / codeql-action

  Actions for running CodeQL analysis

  actionsadvanced-securitycicode-scanningcodeqlsemmle-ql
  Language:TypeScript 1066

• dec0dOS / amazing-github-template

  🚀 Useful README.md, LICENSE, CONTRIBUTING.md, CODE_OF_CONDUCT.md, SECURITY.md, GitHub Issues, Pull Requests and Actions templates to jumpstart your projects.

  readmedocumentationdocsdocs-generatordocumentation-generatortemplategithubissuesprbug-trackerlabelscode-scanningpull-requestspull-requests-templategithub-actionsissuecode-of-conductcode-of-conduct-templatemerge-request
  Language:Python 472
• Qodana

  JetBrains / Qodana

  📝 Source repository of Qodana Help

  cicode-qualitycode-reviewcode-scanningcontinuous-integrationjavajavascriptjetbrainskotlinphppythonstatic-analysisstatic-code-analysistypescript
  389

• JetBrains / qodana-action

  ⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

  actionsgithub-actionscode-reviewcode-qualitystatic-analysisqodanasarifcode-scanningjavakotlintypescriptjavascriptphppythonstatic-code-analysisdevsecopsazure-extensionsazure-pipelinesdotnetgo
  Language:JavaScript 251

• hudangwei / codemillx

  codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)

  codeqlcodeql-modelscode-scanning
  Language:Go 204

• JetBrains / qodana-cli

  🔧 JetBrains Qodana’s official command line tool

  ciclicode-qualitycode-reviewcode-scanningdevsecopsjavajavascriptkotlinphppythonqodanasarifsarif-reportstatic-code-analysistypescript
  Language:Go 165

• naivesystems / analyze

  NaiveSystems Analyze is a static analysis tool for code security and compliance.

  autosarmisra-cstatic-analysismisracertcode-scanningcoding-standardscpp14cppcheckfunctional-safetyiso26262
  154

• owenrumney / squealer

  Telling tales on you for leaking secrets!

  golangsecretssecurity-toolsawsstatic-analysisgit-toolcode-scanningleak-detectionsarif-reportleaking-secretshacktoberfestdevsecopssecuritygo
  Language:Go 153

• GeekMasher / advanced-security-compliance

  GitHub Advance Security Compliance Action

  code-scanningdevsecopsghassecuritysecurity-automation
  Language:Python 130

• github / codeql-coding-standards

  This repository contains CodeQL queries and libraries which support various Coding Standards.

  autosarcertcode-scanningcodeqlcoding-standardscpp14functional-safetyiso26262misra
  Language:CodeQL 107

• advanced-security / advanced-security-material

  advanced-securityadvanced-security-trainingcode-scanningcodeqlsecurity
  Language:Shell 62

• zkoppert / advanced-security-enforcer

  A GitHub action for organizations that enables advanced security code scanning on all new repos

  actionsadvanced-securitycode-scanningcodeqlgithub-actionshacktoberfest
  Language:Python 35

• advanced-security / filter-sarif

  GitHub Action for filtering Code Scanning alerts by path and id

  code-scanninggithub-advanced-securitysarif
  Language:Java 21

• advanced-security / codeql-bundle-action

  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations

  code-scanningcodeqlsecurity
  Language:Shell 19

• haskell-actions / hlint-scan

  Scan Haskell code with HLint.

  actionscode-scanninghaskelllint
  Language:Haskell 19

• G-Research / fsharp-analyzers

  Analyzers for F#

  analyzerdotnetfsharpanalyzerscode-qualitycode-scanning
  Language:F# 14

• php-gettext / PHP-Scanner

  PHP code scanner for gettext

  gettexti18ntranslationcode-scanning
  Language:PHP 14

• gacts / gitleaks

  🚀 GitHub action for running zricethezav/gitleaks

  code-scanninggithub-actionsgitleakssecurity
  Language:JavaScript 12
• code-scanning-playground

  swinton / code-scanning-playground

  A template repository to help you get started with Code Scanning on GitHub

  code-scanningeslintexamplegithubgithub-actionssarif
  Language:C# 9

• thomasbiege / code

  my code

  forensicsfuzzerfuzz-testingintrusion-detection-enviromentintrusion-detection-systemcode-scanningsecure-codingspiderbruteforcerest-apinetwork-securitynetwork-analysisfirewallbadusbusb-rubber-ducky
  Language:HTML 9

• advanced-security / monorepo-filtering-workaround

  A monorepo filtering workaround for GitHub Advanced Security Code Scanning using renaming of the scanning tool in an Actions workflow

  actions-workflowadvanced-securitycodeqlghasmonoreposastcode-scanningsarif
  Language:Java 6

• austimkelly / secretsynth

  A secret scanner wrapper to aggregate results across multiple secret scanning tools

  code-scanningghasgitleakssecretssecrets-detectionsecrets-scannertrufflehog
  Language:Python 6

• JDGrimes / wp-deprecated-code-scanner

  Scans for all deprecated functions in a codebase; scans for the functions themselves, *not* usages

  wordpresscodesniffercode-scanning
  Language:PHP 6

• b4dnewz / wpsploit

  Aggressive regex based code scanner for Wordpress Themes/Plugins

  code-scanningphpstatic-analysisvulnerability-scannerwordpress
  Language:Python 5

• justinchuby / lintrunner-adapters

  Adapters and tools for lintrunner

  ciclippycode-scanningflake8formatterlintlinterlintinglintrunnerpythonruffrustfmtsarif
  Language:Python 5

• php-gettext / JS-Scanner

  Javascript code scanner for gettext

  i18ntranslationgettextcode-scanning
  Language:PHP 5

• clj-holmes / clj-holmes-action

  Action to execute clj-holmes in Clojure/Clojurescript projects.

  clojurecode-scanningsastsecurity
  Language:Shell 4
• codethreat-github-action

  CodeThreat / codethreat-github-action

  CodeThreat GitHub Action integrates with GitHub to perform code security tests on your code. It supports a variety of languages and frameworks, providing detailed security scans to identify potential issues.

  code-scanningsast
  Language:JavaScript 4

• SkyN9ne / CodeQL

  CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

  code-analysiscode-analysis-toolcode-analyzercode-qualitycode-scannercode-scanningcodeqlcodeql-backend-frontend-enabledcodeql-clicodeql-containercodeql-modelscodeql-queriescodescancodescannercodescanninggithub-actionssecuritysecurity-scannersecurity-tools
  Language:CodeQL 4

• CodeThreat / codethreat-jenkins-plugin

  CodeThreat with Jenkins, allowing you to identify and rectify security issues effectively. The repository also provides a sample Jenkins Pipeline script for your guidance. To use this tool, you need a CodeThreat account.

  devsecopscode-scanningjenkinssast
  Language:Java 3

• darkwizard242 / ansible-role-terrascan

  Ansible role for 'terrascan'. Available on Ansible Galaxy.

  ansibleansible-galaxyansible-rolecode-scanninghelmkuberneteslinuxterraformterrascan
  Language:Python 2

• iosifache / osv-scanner-snap

  The OSV-Scanner vulnerability scanner as a snap 📦

  code-scanningosv-devsnapcraft
  2

• ISnackable / G8-CodeQL

  DISM Final Year Project, Security Software Tool Development, CodeQL Scanner

  codeqlsecurity-toolscode-scanningadvance-security
  Language:JavaScript 2

• rm3l / container-scan-to-sarif-action

  Action that converts Azure Container Scan Action output to SARIF

  actionscontainer-scanningsarifsarif-reportcode-scanning
  2