3 Repos
Identifies the enablement of deprecated or dangerous system commands via environment configuration.
Distinct from Insecure API Detection: Focuses on identifying the enabling of insecure legacy commands rather than general API usage auditing
Explore 3 awesome GitHub repositories matching security & cryptography · Insecure Command Detection. Refine with filters or upvote what's useful.
Zizmor is a security linter and static analysis tool designed to audit GitHub Actions workflow files. It functions as a CI/CD security scanner that identifies security vulnerabilities, misconfigurations, and software supply chain risks within automation pipelines. The project distinguishes itself by providing an automated workflow remediator that applies security fixes to identified vulnerabilities. It also implements a language server for integration with code editors and supports a variety of analysis personas to scale the sensitivity and volume of reported findings. The tool covers a broa
Flags the explicit enablement of deprecated and insecure workflow commands via environment variables.
PurpleLlama is a collection of security toolsets and frameworks designed to audit large language model vulnerabilities and implement runtime input-output guardrails. It provides a security evaluation framework and benchmark suite to quantify risks associated with prompt injections and the generation of malicious code. The project includes a content moderator and input-output filters that use a standardized taxonomy to identify and block harmful content, jailbreaking attempts, and insecure commands. It also features capabilities for sensitive document classification to prevent the unauthorized
Performs security scans of generated code during execution to prevent insecure suggestions and malicious command execution.
PurpleLlama is a collection of security components and toolkits designed for large language models. It provides specialized systems including a code security scanner, a content moderation system, a prompt injection firewall, and a security assessment toolkit. The project enables the identification and blocking of jailbreaking attempts and malicious prompts during model inference. It includes capabilities for detecting violating content across multiple languages and modalities and scanning generated code for vulnerabilities to prevent the execution of insecure commands. The framework further
Filters AI-generated code at execution time to block malicious or insecure system commands.