Categories: Security
Static analysis at ludicrous speed.
Free

Description

Semgrep is a highly-configurable SAST tool that looks for recurring patterns in the syntax tree. It can either run locally using Docker or be integrated into the CI/CD pipeline with Github Actions. Results are delivered as JSON files, allowing you to pipe the results into other tools, like jq in order to manipulate them.

More Resources & Tools in Security

GradeJS

Analyze webpack production bundle

Cherrybomb

A CLI tool that helps you avoid undefined user behaviour by validating your API specifications.

BITB

Browser templates for Browser In The Browser (BITB) attack.