A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.
-
Updated
Feb 27, 2025 - Python
#
code-security
Here are 26 public repositories matching this topic...
Static Value-Flow Analysis Framework for Source Code
llvm static-analysis dependency-analysis code-analysis static-analyzer pointer-analysis points-to-analysis source-code-analysis code-security static-value-flow
-
Updated
Mar 3, 2025 - C++
🎯 Server Side Template Injection Payloads
security security-audit web code injection source bounty bugbounty payload payloads websecurity source-code-analysis ssti server-side-template-injection code-security bugbountytips payloadbox
-
Updated
Jul 18, 2024
Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
-
Updated
Mar 3, 2025 - Go
Django application that performs SAST and Malware Analysis for Android APKs
docker django malware django-rest-framework apk malware-analysis android-security mobile-security virustotal androguard apk-analysis sast code-security defect-dojo mobile-audit
-
Updated
Dec 25, 2024 - HTML
🎯 CSV Injection Payloads
security csv bug-bounty bugbounty payload payloads websecurity websec code-security bugbountytips payloadbox csv-injection csv-exploit csv-payload csv-payloads
-
Updated
Jul 18, 2024
Prevent merging of malicious code in pull requests
obfuscation static-analysis pull-request github-app security-tools cloud-security security-review malware-detection security-rules code-security malicious-code supply-chain-security semgrep semgrep-rules dynamic-execution code-integrity security-scan block-merging cicd-security opengrep
-
Updated
Feb 19, 2025 - Python
Focused malicious code detection optimizing the protection-to-noise ratio
security obfuscation detection malware ruleset appsec devsecops cloud-security malware-detection code-security malicious-code supply-chain-security semgrep semgrep-rules dynamic-execution code-integrity security-scan malicious-detection cicd-security opengrep
-
Updated
Feb 24, 2025 - Python
The purpose of this document is to outline the security risks and vulnerabilities that may arise when implementing ChatGPT in web applications and to provide best practices for mitigating these risks.
html php security ajax-request js ajax vulnerabilities server-side chf serverside-rendering code-security security-risks vulnerabilities-fix chatgpt
-
Updated
Feb 6, 2025
Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations
-
Updated
Sep 12, 2023 - TypeScript
AI code generation and improvement
-
Updated
Feb 23, 2025 - Python
Official documentation for Gitsecure
-
Updated
Oct 17, 2024 - MDX
Contexi let you interact with entire codebase or data with context using a local LLM on your system.
ai re-ranking code-search application-security security-tools ai-security rag code-security llm retrieval-augmented-generation ai-security-tool
-
Updated
Oct 23, 2024 - Python
SAST Scanner Modified - Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!
static-code-analysis static-analysis application-security secure-coding sast secure-coding-practices static-code-and-dynamic-analysis code-security secure-code-framework sast-framework
-
Updated
Mar 23, 2020 - Python
Github action to run PyCQA's bandit security linter.
python security security-audit actions python3 workflows python-security security-scanner bandit code-linter github-actions code-security
-
Updated
Mar 4, 2025 - Dockerfile
ESLint backbone repository for workshop
-
Updated
Jul 18, 2023 - JavaScript
Complete DevOps CI/CD project with Documented Walkthrough
docker pipeline declarative sonarqube code-quality jenkinsfile cicd nexus-repository sonarqube-scanner sonarqube-analysis code-security private-docker
-
Updated
Dec 26, 2022 - Java
Code security analyzer for Python, JavaScript, Java vulnerabilities.
javascript python productivity programming static-analysis cybersecurity developer-tools vulnerability-detection code-security
-
Updated
Jan 24, 2025 - Python
The only tool your project needs to ensure security and quality. Open-source and free.
-
Updated
Jan 23, 2025 - Rust
Sonarqube community with postgreSQL database on docker
-
Updated
May 20, 2022
Improve this page
Add a description, image, and links to the code-security topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the code-security topic, visit your repo's landing page and select "manage topics."