"topic:cicd-security" — Search

11 results for “topic:cicd-security”

Prevent merging of malicious code in pull requests

block-mergingcicd-securitycloud-securitycode-integritycode-securitydynamic-executiongithub-appmalicious-codemalware-detectionobfuscationopengreppull-requestsecurity-reviewsecurity-rulessecurity-scansecurity-toolssemgrepsemgrep-rulesstatic-analysissupply-chain-security

apiiro/malicious-code-ruleset

Focused malicious code detection ruleset, with a high protection-to-noise ratio

Python1438Updated 2 weeks ago

appseccicd-securitycloud-securitycode-integritycode-securitydetectiondevsecopsdynamic-executionmalicious-codemalicious-detectionmalwaremalware-detectionobfuscationopengreprulesetsecuritysecurity-scansemgrepsemgrep-rulessupply-chain-security

Mixeway/Flow

Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams

Java787Updated 4 days ago

aspmcicd-securitydevsecopssecuritysecurity-auditsecurity-toolsvulnerability-detection

Axonius/ActSpect

A comprehensive security scanner for GitHub Actions workflows, providing deep supply chain analysis to detect vulnerabilities, misconfigurations, and compliance issues in your CI/CD pipelines.

Python102Updated 5 days ago

cicd-securityclicompliancedependency-analysisdevsecopsgithub-actionspythonsastsecuritysecurity-auditingsecurity-scannersemgrepstatic-analysissupply-chain-securityvulnerability-scanner

obsTR/cicd-cloud-security-checklist

A comprehensive security design review checklist for hardening Jenkins, GitHub Actions, AWS, and Azure pipelines. Audit your software supply chain before production.

30Updated 3 weeks ago

aws-securitycicd-securitycloud-securitydevops-checklistsupply-chain-security

harkarvog-sec/enterprise-appsec-playbook

Enterprise application security playbook covering attacker-driven testing, vulnerability management, and security automation across the SDLC.

Python22Updated 2 weeks ago

api-securityapplication-securityappsecbusiness-logic-testingcicd-securitycloud-securitydevsecopsjirapenetration-testingpythonrapid7security-automationsecurity-reportingvulnerability-management

ridpath/JenkinsBreaker

JenkinsBreaker: Offensive CI/CD security research framework focused on Jenkins exploitation, CVE chaining, and pipeline compromise scenarios.

Python10Updated 1 month ago

ci-cdcicd-securitycve-scanningdevops-securityexploitexploitation-frameworkfuzzerjenkinsoffensive-cioffensive-securitypenetrationpenetration-testing-frameworkpentestpipeline-securityredteam

laugiov/code-safety

Security Engineering reference: taint analysis benchmark comparing Pysa, CodeQL & Semgrep on a controlled Django app (16 OWASP Top 10 cases). Includes CI/CD integration with SARIF, ground truth validation, and enterprise scaling patterns.

Python10Updated 1 month ago

appsecbenchmarkcicd-securitycodeqldevsecopsdjangoowasppysapythonsarifsastsecuritysemgrepstatic-analysistaint-analysisvulnerability-detection

notdodo/github-actions

Collection of custom GHA and reusable workflows.

Python10Updated 2 days ago

cicd-securitygithub-actionsreusable-workflows

indoor47/gh-workflow-hardener

GitHub Actions security scanner: pin actions to SHAs, detect script injection, audit permissions. Fix supply chain vulnerabilities.

Python00Updated 1 week ago

action-pinningcicd-securitydevsecopsgithub-actionsgithub-actions-securitysarifsecuritystatic-analysissupply-chain-securityworkflow-security

hautph/awesome-devsecops-v2

🛡️ A curated list of awesome DevSecOps tools, best practices, and resources for securing CI/CD pipelines. Covers SCA, SAST, DAST, IaC, and Container Security.

TypeScript00Updated 2 weeks ago

application-securityawesome-listcicd-securitycompliance-as-codedastdevsecopsiac-securitysastsecurityvulnerability-scanning