D
devsecops

Projects with this topic

View Tanuki Shop project

Developer Advocacy at GitLab / tutorials / Security and Governance / Tanuki Shop

Probably the most modern and sophisticated insecure web application!

Clone of OWASP Juice Shop with GitLab branding and more.

Learn more by seeing our DevSecOps Tutorial

devsecops security Compliance

1

Updated Jan 05, 2026

1 5 3 2

Updated Jan 05, 2026
View project2-sast-scan project

lawrence-obrero-devsecops / project2-sast-scan

This project sets up Static Application Security Testing (SAST) in a GitLab CI/CD pipeline using two tools:

NJSScan → A security scanner specialized for JavaScript applications. It analyzes source code and flags insecure coding patterns and vulnerabilities.

Semgrep → A lightweight, multi-language static analysis tool that uses rulesets (such as p/javascript) to detect vulnerabilities, insecure practices, and style issues across different programming languages.

devsecops njsscan dataset SAST

0

Updated Sep 13, 2025

0 0 0 0

Updated Sep 13, 2025
View project1-gitleaks-secrets-scan project

lawrence-obrero-devsecops / project1-gitleaks-secrets-scan

This project demonstrates how to integrate GitLeaks for secrets scanning into a GitLab CI pipeline, along with a Git pre-commit hook.

devsecops secrets-scan... gitleaks

0

Updated Sep 13, 2025

0 0 0 0

Updated Sep 13, 2025
View dvna project

Mohammed Fouad Hassen Ramadan (Memo) / dvna

Damn Vulnerable NodeJS Application used as a POC for upcoming DevSecOps pipeline.

devsecops

0

Updated Jul 04, 2022

0 1 0 0

Updated Jul 04, 2022

Projects with this topic

Developer Advocacy at GitLab / tutorials / Security and Governance / Tanuki Shop

lawrence-obrero-devsecops / project2-sast-scan

lawrence-obrero-devsecops / project1-gitleaks-secrets-scan

Mohammed Fouad Hassen Ramadan (Memo) / dvna