#
devsecops
Here are 87 public repositories matching this topic...
Collaborative Penetration Test and Vulnerability Management Platform
security
devops
chatops
security-audit
collaboration
orchestration
nmap
penetration-testing
vulnerability
infosec
pentesting
collaborative
cve
nessus
vulnerability-management
vulnerability-scanners
burpsuite
security-automation
devsecops
continuous-scanning
-
Updated
May 19, 2022 - Python
letsencrypt
docker
nginx
kubernetes
security
devops
hosting
reverse-proxy
clamav
cybersecurity
swarm
web-security
hardening
modsecurity
dnsbl
devsecops
antibot
crowdsec
bunkerized-nginx
security-tuning
-
Updated
Jul 8, 2022 - Python
Centralize Vulnerability Assessment and Management for DevSecOps Team
devops
opensource
pentesting
vulnerabilities
devops-tools
scanning
vulnerability-management
vulnerability-assessment
secdevops
pentesters
devsecops
-
Updated
Jul 6, 2022 - Python
Continuously monitor your AWS attack surface and evaluate services for configurations that can lead to degradation of confidentiality, integrity or availability. All results can be exported to Security Hub, JSON, CSV, Databases, and more for further aggregation and analysis.
security-audit
compliance
security-hardening
aws-security
monitoring-tool
security-tools
devsecops
soar
security-engineering
cloud-security
aws-audit
cloud-auditing
security-monitoring
well-architected
cloud-compliance-reporting
security-hub
aws-compliance
continuous-compliance
attack-surface-management
-
Updated
Jun 14, 2022 - Python
Open
rush.js build errors
prabhu
commented
Apr 20, 2021
Seeing the below error while installing rush.js. Probably might need a package in the base image. Any help would be appreciated.
#21 516.9 > keytar@7.6.0 install /usr/local/lib/node_modules/@microsoft/rush/node_modules/keytar
#21 516.9 > prebuild-install || npm run build
#21 516.9
#21 521.6 prebuild-install WARN install No prebuilt binaries found (target=14.16.0 runtime=node arch=arm64
bug
Something isn't working
good first issue
Good for newcomers
help wanted
Extra attention is needed
terriko
commented
Jul 7, 2022
Dependabot found an issue in a dependency that we use inside a requirements.txt file that's only used for testing. Github has auto-generated a PR for us here:
- #1755
Note that this is a file used ONLY for testing. nothing here is actually vulnerable. But I'd like to update it anyhow so dependabot doesn't have it flagged.
If you dig through the output of Github Actions, you can see that
good first issue
Good for newcomers
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
-
Updated
May 18, 2022 - Python
Identify hardcoded secrets in static structured text
lint
security
parser
credentials
pipeline
linter
secrets
json-parser
secrets-scan
yaml-parser
xml-parser
passwords
structured-data
structured-text
leaks
devsecops
hardcoded
security-compliance
secrets-detection
-
Updated
Jul 4, 2022 - Python
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan Community Edition (CE)
kubernetes
aws
static-code-analysis
azure
terraform
static-analysis
ethereum
blockchain
gcp
sonarqube
ethereum-contract
code-quality
static-analyzers
devsecops
sast
dapps
defi
code-quality-analyzer
-
Updated
Jun 27, 2022 - Python
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
-
Updated
Jul 5, 2022 - Python
Anteater - CI/CD Gate Check Framework
devops
circleci
security-audit
travis-ci
regexp
malware
developer-tools
devops-tools
scanning
gate
jenkins-pipeline
devsecops
virus-total
anteater
development-enviroment
-
Updated
Jul 2, 2021 - Python
Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used to setup Dynamic Application Security Testing (DAST).
-
Updated
Dec 19, 2021 - Python
GitHub Advance Security Compliance Action
-
Updated
Jan 25, 2022 - Python
Static security checker for Dockerfiles
-
Updated
Jun 8, 2021 - Python
GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfiguration prevention strategy. It can be used to test products with access to GitHub repositories without a risk to your production environment.
-
Updated
May 12, 2022 - Python
The Security Dependency Orchestrator Service
-
Updated
Dec 11, 2020 - Python
A schema and set of tools for using SQL to query cloud infrastructure.
aws
security
postgres
sql
iam
secops
cloud-infrastructure
cmdb
infosec
database-schema
aws-security
security-groups
security-tools
cloudsecurity
devsecops
cloud-security
compliance-as-code
compliance-automation
cspm
infrastructure-as-deployed
-
Updated
Oct 8, 2021 - Python
Python API client library for the GitGuardian API
-
Updated
Jul 6, 2022 - Python
A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
python
security
dependency-analysis
supply-chain
pip
developer-tools
pipfile
vulnerabilities
requirements
vulnerability-scanners
security-tools
devsecops
-
Updated
Jun 21, 2022 - Python
Vimana is an experimental security framework that aims to provide resources for auditing Python web applications.
experimental
django-application
hacking
django-templates
secops
application-security
flask-security
information-security
hacking-tool
python-security
django-template-language
devsecops
security-framework
hacking-framework
python3-application
hackingtools
django-security
-
Updated
Jun 22, 2022 - Python
Detect Sensitive REST API communication using Deep Neural Networks
privacy
lstm-neural-networks
gdpr
security-tools
privacy-enhancing-technologies
devsecops
privacy-by-design
-
Updated
Jun 22, 2022 - Python
Improve this page
Add a description, image, and links to the devsecops topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the devsecops topic, visit your repo's landing page and select "manage topics."
Describe the issue
Checkov skips terraform file when it can't parse a file. When you are using checkov in gitlab ci pipeline with junitxml output, it will be better to include such erros in 'Errors' list instead of ignoring them.
Examples