Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
---|---|---|---|---|---|---|---|---|---|---|
Tfsec | 6,548 | 18 | a month ago | 411 | September 11, 2023 | 15 | mit | Go | ||
Security scanner for your Terraform code | ||||||||||
Checkov | 6,284 | 6 | 3 months ago | 3,177 | December 07, 2023 | 131 | apache-2.0 | Python | ||
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew. | ||||||||||
Ort | 1,405 | 70 | 3 months ago | 13 | November 23, 2023 | 342 | apache-2.0 | Kotlin | ||
A suite of tools to automate software compliance checks. | ||||||||||
Lunasec | 1,355 | 6 months ago | 3 | April 05, 2022 | 98 | other | TypeScript | |||
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/ | ||||||||||
Openscap | 1,217 | 3 months ago | 219 | lgpl-2.1 | XSLT | |||||
NIST Certified SCAP 1.2 toolkit | ||||||||||
Container Compliance | 224 | 7 years ago | gpl-3.0 | Shell | ||||||
Assessing compliance of a container | ||||||||||
Checkov Action | 188 | 3 months ago | 16 | apache-2.0 | HCL | |||||
This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues. | ||||||||||
Cookiescanner | 108 | 5 years ago | 5 | apache-2.0 | Go | |||||
Cookie Scanner for GDPR compliance | ||||||||||
Terraform Security Scan | 107 | 7 months ago | 5 | mit | Shell | |||||
Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec | ||||||||||
Openrmf Docs | 101 | 6 months ago | 4 | gpl-3.0 | JavaScript | |||||
Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on using the tool. |