Bearer is a static analysis security testing tool and privacy compliance auditor. It identifies security vulnerabilities, hard-coded secrets, and privacy risks in source code through static analysis and data flow tracing. The tool distinguishes itself by tracking the movement of sensitive data through code to identify leaks and by mapping personal and health-related information flows to generate evidence for privacy impact assessments. It also provides differential scanning for pull requests and uses fingerprint-based suppression to exclude known false positives from reports. The platform co
DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.
nodejsscan is a static analysis security tool and vulnerability detection engine designed to scan Node.js source code for security flaws and common coding vulnerabilities. It functions as a static application security testing tool that analyzes code without executing the program. The tool operates as a security linter that can be integrated into continuous integration pipelines to block insecure code from merging into main branches. It automates the auditing process through rule-based detection and pattern-based static analysis. The project provides capabilities for vulnerability alert autom
Git-secrets is a security utility designed to prevent the accidental exposure of sensitive credentials by integrating automated scanning directly into the version control commit lifecycle. It functions as a commit scanner that evaluates staged files and commit messages against defined security policies before changes are finalized in a repository. The tool utilizes regular expression pattern matching to identify potential secrets and supports the registration of custom patterns to address specific organizational security requirements. To manage operational friction, it includes mechanisms for
.. image:: https://travis-ci.org/python-security/pyt.svg?branch=master :target: https://travis-ci.org/python-security/pyt
The main features of python-security/pyt are: Static Code Analysis, Python Web Security, Static Analysis.
Open-source alternatives to python-security/pyt include: bearer/bearer — Bearer is a static analysis security testing tool and privacy compliance auditor. It identifies security… microsoft/devskim — DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities. ajinabraham/nodejsscan — nodejsscan is a static analysis security tool and vulnerability detection engine designed to scan Node.js source code… awslabs/git-secrets — Git-secrets is a security utility designed to prevent the accidental exposure of sensitive credentials by integrating… bahmutov/ban-sensitive-files — Checks filenames to be committed against a library of filename rules to prevent sensitive files in Git. baba-s/uni-common-test-runner.