?? A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
nodejsscan is a static security code scanner for Node.js applications.
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
《深入理解CodeQL》Finding vulnerabilities with CodeQL.
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.
基于pytorch的ocr算法库,包括 psenet, pan, dbnet, sast , crnn
mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Ful…
Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
Plugin for JADX to integrate MCP server
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability rules, supports decompile, custom rule, and is compatible with the technology stacks of Servlet&filter, Spring,struts,Dubbo,Thrift, jax-rs,jax-ws,JFinal,Netty,MyBatis,and JSP.
xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Add a description, image, and links to the sast topic page so that developers can more easily learn about it.
To associate your repository with the sast topic, visit your repo's landing page and select "manage topics."
| 女性吃什么改善更年期 | 撸铁什么意思 | 愣头青是什么意思 | 海菜是什么 | 前列腺液和精液有什么区别 |
| 后脑勺发胀是什么原因 | 五个手指头分别叫什么 | plus是什么意思 | 指甲上的月牙代表什么 | ne是什么意思 |
| 仙女下凡是什么生肖 | 孩子百天有什么讲究 | 嫐什么意思 | 15年什么婚 | 腹痛拉稀什么原因 |
| 谷氨酰转肽酶高是什么原因 | 作古是什么意思 | 梦到自己被蛇咬是什么意思 | 摇摇欲坠是什么意思 | 看乳腺应该挂什么科 |
| 皮神经炎是什么症状hcv8jop2ns8r.cn | 各位同仁用在什么场合hcv8jop6ns5r.cn | 伽是什么意思hcv7jop6ns0r.cn | 心率过缓吃什么药hlguo.com | 小五行属性是什么hcv7jop6ns2r.cn |
| 1980属什么生肖hcv9jop5ns7r.cn | jo是什么意思hcv8jop5ns5r.cn | 藩王是什么意思wuhaiwuya.com | 胃窦病变意味着什么hcv8jop0ns1r.cn | 氯偏低是什么原因fenrenren.com |
| 麻鸡是什么鸡hcv9jop6ns2r.cn | 什么病才查凝血四项呢hcv8jop3ns0r.cn | 百合与什么搭配最好hcv8jop1ns0r.cn | 舌头开裂吃什么药96micro.com | 6岁属什么生肖hcv7jop6ns0r.cn |
| 牛肉和什么不能一起吃hanqikai.com | 手机NFC什么意思hcv8jop0ns5r.cn | 副歌部分是什么意思hcv9jop2ns4r.cn | 吃什么排宿便清肠彻底naasee.com | 人事是做什么的hcv9jop6ns2r.cn |