Skip to content

Filters

Clear

Code Scanning Ready

Static analysis, dynamic analysis, container scanning, linting, and fuzzing tools that integrate with GitHub Code Scanning SARIF Upload

173 results for "sort:popularity-desc" filtered by Code Scanning Ready

Apps

Bridgecrew

By bridgecrewio

Find and fix security and compliance issues in Terraform, AWS Cloudformation, ARM templates, Kubernetes, and more

5.1k installs

Prisma Cloud Code Security

By bridgecrewio

A single tool for securing IaC, container images and open source software across all modern architectures and software supply

2.3k installs

Accurics

By accurics

Detect policy violations across Infrastructure as Code and programmatically fix them with automated pull requests

288 installs

Data Theorem (SAST)

By datatheorem

Find and fix security vulnerabilities as code is written

93 installs

G7.8.5

By NETwork-Inc

webtechnicom Twilio API Communication Service

48 installs

cobrella

By Rayan25062011

The code analysis tool for the python language

17 installs

Tillion Guardian

By tillionio

Your AI Data Guardian

Actions

oxsecurity

MegaLinter

By oxsecurity

Creator verified by GitHub

Combine all available linters to automatically validate your sources without configuration

1.7k stars
code

mobsfscan

By MobSF

Creator verified by GitHub

mobsfscan is a SAST that can find insecure code patterns in your Android and iOS source code

538 stars
play

flawfinder_scan

By david-a-wheeler

Execute Flawfinder to scan source code for vulnerabilities

454 stars
bar-chart-2

Qodana Scan

By JetBrains

Creator verified by GitHub

Scan your projects with Qodana on GitHub. Docs: https://jb.gg/qodana-github-action

250 stars
play

ghascompliance

By GeekMasher

ghascompliance

130 stars
flag

is-my-node-vulnerable

By RafaelGSS

checks if your Node.js installation is vulnerable to known security vulnerabilities

119 stars
microsoft image/svg+xml

security-devops-action

By microsoft

Creator verified by GitHub

Run security analyzers

96 stars
microsoft image/svg+xml

PSRule

By microsoft

Creator verified by GitHub

Run rules in a GitHub repository

72 stars
search

Semgrep x semgrep-rules-manager

By iosifache

Runs Semgrep with all rules from semgrep-rules-manager

67 stars
microsoft image/svg+xml

InferSharp

By microsoft

Creator verified by GitHub

Scalable and interprocedural C# code analyzer for detecting race condition, null pointer derefs and resource leaks

61 stars
View all

List your tool on GitHub Marketplace

Read the documentation

Learn how you can build tools to extend and improve developers' workflows.

Submit your tool for review

Share your app or GitHub Action with millions of developers.