code-scanning

There are 4 repositories under code-scanning topic.

• skills / secure-code-game

  A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

  code-scanningcode-securitycodeqlskills-course
  Language:JavaScript 2523

• laminas / laminas-code

  Extensions to the PHP Reflection API, static code scanning, and code generation

  code-generationcode-scanningreflection-api
  Language:PHP 1895

• github / codeql-action

  Actions for running CodeQL analysis

  actionsadvanced-securitycicode-scanningcodeqlsemmle-ql
  Language:TypeScript 1410

• dec0dOS / amazing-github-template

  🚀 Useful README.md, LICENSE, CONTRIBUTING.md, CODE_OF_CONDUCT.md, SECURITY.md, GitHub Issues, Pull Requests and Actions templates to jumpstart your projects.

  readmedocumentationdocsdocs-generatordocumentation-generatortemplategithubissuesprbug-trackerlabelscode-scanningpull-requestspull-requests-templategithub-actionsissuecode-of-conductcode-of-conduct-templatemerge-request
  Language:Python 651
• Qodana

  JetBrains / Qodana

  📝 Source repository of Qodana Help

  cicode-qualitycode-reviewcode-scanningcontinuous-integrationjavajavascriptjetbrainskotlinphppythonstatic-analysisstatic-code-analysistypescript
  398

• JetBrains / qodana-action

  ⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

  actionsazure-extensionsazure-pipelinescode-qualitycode-reviewcode-scanningdevsecopsdotnetgithub-actionsgojavajavascriptkotlinphppythonqodanasarifstatic-analysisstatic-code-analysistypescript
  Language:JavaScript 294

• owenrumney / squealer

  Telling tales on you for leaking secrets!

  golangsecretssecurity-toolsawsstatic-analysisgit-toolcode-scanningleak-detectionsarif-reportleaking-secretshacktoberfestdevsecopssecuritygo
  Language:Go 232

• JetBrains / qodana-cli

  🔧 JetBrains Qodana’s official command line tool

  javascriptkotlinpythonjavaphptypescriptstatic-code-analysisclicicode-reviewcode-qualitysarifdevsecopscode-scanningqodanasarif-report
  Language:Go 212

• hudangwei / codemillx

  codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)

  codeqlcodeql-modelscode-scanning
  Language:Go 204

• naivesystems / analyze

  NaiveSystems Analyze is a static analysis tool for code security and compliance.

  autosarmisra-cstatic-analysismisracertcode-scanningcoding-standardscpp14cppcheckfunctional-safetyiso26262
  Language:C++ 190

• github / codeql-coding-standards

  This repository contains CodeQL queries and libraries which support various Coding Standards.

  code-scanningcodeqlcoding-standardscpp14functional-safetyiso26262autosarcertmisra
  Language:CodeQL 172

• GeekMasher / advanced-security-compliance

  GitHub Advance Security Compliance Action

  code-scanningdevsecopsghassecuritysecurity-automation
  Language:Python 134

• shivasurya / code-pathfinder

  An open-source security suite aiming to combine structural code analysis with AI-powered vulnerability detection. Built for advanced structural search, derive insights, find vulnerabilities in code.

  ai-agentsai-sastapplication-securitycode-scanningcodeqlsastsearchsecuritysecurity-toolsstructural-search
  Language:Go 81

• advanced-security / advanced-security-material

  securityadvanced-securityadvanced-security-trainingcodeqlcode-scanning
  Language:Shell 75

• kereva-dev / kereva-scanner

  Code scanner to check for issues in prompts and LLM calls

  ai-evaluationcode-scanninghallucinationllmllm-evaluationllm-securityowasp-llm-top-10prompt-injectionllm-performanceevaluationlinterred-teamingsecurityaiai-securityai-code-reviewai-performanceai-red-teamingcli
  Language:Python 73
• codety-scanner

  codetyio / codety-scanner

  Codety Scanner is a comprehensive code scanner designed to detect code issues for 30+ programming languages and IaC frameworks. It embeds more than 6,000 code analysis rules and can detect code smells, vulnerable code, secrets in the code, performance issues, style violations, and more.

  codecode-scannercode-scanningscannersecuritysecurity-scannercodety
  Language:Java 48

• zkoppert / advanced-security-enforcer

  A GitHub action for organizations that enables advanced security code scanning on all new repos

  advanced-securitycode-scanningcodeqlactionsgithub-actionshacktoberfest
  Language:Python 41

• advanced-security / filter-sarif

  GitHub Action for filtering Code Scanning alerts by path and id

  code-scanninggithub-advanced-securitysarif
  Language:Java 36

• codescan-ai / codescan

  CodeScanAI is an open source tool that utilizes powerful AI models (OpenAI, Gemini, and even self-hosted servers) to scan your codebase for possible security vulnerabilities.

  aiautomationcode-scanningsecurity-tools
  Language:Python 36

• advanced-security / codeql-bundle-action

  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations

  code-scanningcodeqlsecurity
  Language:Shell 27
• bandit-action

  PyCQA / bandit-action

  GitHub Action to run Bandit

  banditcode-scanningcode-scanning-enabledcode-scanning-readygithub-actiongithub-actions
  25

• haskell-actions / hlint-scan

  Scan Haskell code with HLint.

  actionscode-scanninghaskelllint
  Language:Haskell 23

• G-Research / fsharp-analyzers

  Analyzers for F#

  analyzeranalyzerscode-qualitycode-scanningdotnetfsharp
  Language:F# 21

• gacts / gitleaks

  🚀 GitHub action for running gitleaks/gitleaks (no license key is required)

  code-scanninggithub-actionsgitleakssecurity
  Language:JavaScript 17

• Finatext / gls

  Support gitleaks config development and extend some gitleaks features.

  code-scanninggitleakssecrets-detectionsecrets-scan
  Language:Rust 15

• php-gettext / PHP-Scanner

  PHP code scanner for gettext

  code-scanninggettexti18ntranslation
  Language:PHP 14

• advanced-security / monorepo-filtering-workaround

  A monorepo filtering workaround for GitHub Advanced Security Code Scanning using renaming of the scanning tool in an Actions workflow

  actions-workflowadvanced-securitycodeqlghasmonoreposastcode-scanningsarif
  Language:Java 11

• fguisso / introducao-ao-code-scanning

  Introdução Guiada ao Code Scanning

  code-scanningskill-course
  Language:Python 10

• andreas-kupries / kettle

  Mirror of kettle @ core.tcl.tk/akupries -- A build system for pure Tcl, and critcl packages

  build-systemcode-scanningcritcltcl
  Language:Tcl 9

• jesuscmartinez / lets-threat-model-core

  Lets Threat Model is an AI-driven tool that helps teams identify and manage threats early in the development lifecycle. Built with extensibility and automation in mind, it brings security into agile workflows by generating actionable threat models.

  agentic-aiaisecuritysecurity-toolsthreat-modelingcode-scanning
  Language:Python 9
• code-scanning-playground

  swinton / code-scanning-playground

  A template repository to help you get started with Code Scanning on GitHub

  githubcode-scanningsarifexamplegithub-actionseslint
  Language:C# 9

• thomasbiege / code

  my code

  forensicsfuzzerfuzz-testingintrusion-detection-enviromentintrusion-detection-systemcode-scanningsecure-codingspiderbruteforcerest-apinetwork-securitynetwork-analysisfirewallbadusbusb-rubber-ducky
  Language:HTML 9

• austimkelly / secretsynth

  A secret scanner wrapper to aggregate results across multiple secret scanning tools

  code-scanningghasgitleakssecretssecrets-detectionsecrets-scannertrufflehog
  Language:Python 8

• justinchuby / lintrunner-adapters

  Adapters and tools for lintrunner

  cilintingsariflintrunnercode-scanningclippyflake8lintlinterpythonruffrustfmtformatter
  Language:Python 6

• eliasmoflag / xscan

  Simple header-only IDA-style code scanner

  code-scanningcppgame-hackingmoddingpattern-scanningwindowsx86x86-64
  Language:C++ 5

• iosifache / osv-scanner-snap

  The OSV-Scanner vulnerability scanner as a snap 📦

  code-scanningosv-devsnapcraft
  5