Security

BackHub

Reliable GitHub repository backup, set up in minutes

Dependabot Preview

Automated dependency updates for Ruby, JavaScript, Python, Go, PHP, Elixir, Rust, Java and .NET

WhiteSource Bolt

Detect open source vulnerabilities in real time with suggested fixes for quick remediation

Renovate

Keep dependencies up-to-date with automated Pull Requests

Snyk

Find, fix (and prevent!) known vulnerabilities in your code

LGTM

Find and prevent zero-days and other critical bugs, with customizable alerts and automated code review

Sonatype DepShield

Monitor your open source components for security vulnerabilities - goodbye muda, hello kaizen

GuardRails

GuardRails provides continuous security feedback for modern development teams

fuzzit.dev

Continuous Fuzzing for C/C++/Java/Golang/Rust and Swift integrated with your current CI/CD workflow

Nightfall Radar

Detect credentials and secrets in GitHub repos via machine learning. Formerly known as Watchtower Radar

Extant DevSecOps

Speed up your remediation cycles for security vulnerabilities with Extant DevSecOps pipeline tools

ODIN

Audit your smart contract files automatically within a blink

nexploit.app

NexPloit is a Dynamic Application Security scanner powered by Machine learning and modern scanning technologies

Prisma Cloud

App to identify security issues in IaC templates such as Terraform templates, CloudFormation templates and K8s app manifests

Snyk CLI Action

By clarkio

Run the Snyk CLI

Repository Visibility SMS Alert

By bitoiu

Notifies active organization owners that a repository has been made public and allows them to react via SMS

Secret Scan

By max

Scan your repository for secrets

action-accesscontrol

By ludeeus

Check if the invoker has access defined access level

gitleaks-action

By eshork

checks your source for embedded key leaks, using gitleaks

Meterian Scanner

By MeterianHQ

Scan a Java repository for vulnerabilities