Projects with this topic
-
Gemnasium Maven plugin for Dependency Scanning
-
Template project for building new Secure analyzers
-
Collection of shell scripts packaged with SAST analyzers to enable post-analyzer integrations.
-
Codequality jobs in pipelines https://docs.gitlab.com/ee/user/project/merge_requests/code_quality.html
-
Gemnasium Maven plugin for Dependency Scanning
-
Go packages to implement analyzers
-
Go package for implementing customized rulesets for SAST analyzers
-
SAST Analyzer for Kubernetes manifests based on kubesec
-
SAST Analyzer for Phoenix Elixir projects based on sobelow
-
SAST Analyzer for Salesforce Apex projects based on pmd
-
A post-processor for computing the scope+offset fingerprint.
Updated -
Go package for implementing shared vulnerability command interface for secure analyzers
-
SAST Analyzer based on SpotBugs and Find Sec Bugs.
-
Go package for implementing shared vulnerability structs for secure analyzers
-
SAST Analyzer for detecting leaked secrets
-
GitLab Analyzer for Infrastructure as Code (IaC) projects that calls kics. This analyzer is written in Go using the command library shared by all analyzers.
-
SAST Analyzer based on Semgrep
-
Dependency Scanning Analyzer based on Gemnasium.
-
Analyzer that scans for application dependencies.
