sast

sast
Released
4 years ago
Version
0.8.1
Parse CSS, Sass, and SCSS into Unist syntax trees
css sass sast scss syntax-tree unist
circle-ir
Released
5h ago
Version
3.119.0
High-performance Static Application Security Testing (SAST) library for detecting security vulnerabilities through taint analysis
sast security static-analysis taint-analysis vulnerability-detection code-analysis +14
circle-ir-ai
Released
5h ago
Version
2.20.2
LLM-enhanced SAST analysis built on circle-ir
sast security static-analysis llm ai vulnerability-detection +2
icarus-cmd
Released
yesterday
Version
1.4.1
Icarus — plateforme de pentest tout-en-un : nmap, nuclei, sqlmap, ZAP, ffuf, katana & co regroupés. CLI + TUI + interface web locale, analyse de code (SAST), base de résultats commune et rapports.
pentest security sast nuclei nmap sqlmap +5
sast-skills
Released
yesterday
Version
0.8.2
LLM SAST skills — turn your AI coding assistant into a SAST scanner for your codebase.
sast security vulnerability scanner claude claude-code +2
agentgg
Released
yesterday
Version
0.1.9
Agentic SAST scanner — white box, CI-ready, multi-provider. Reasoning where regex falls short.
security sast vulnerability scanner ai llm +5
ai-repo-safety
Released
1 week ago
Version
0.1.4
AI/vibe-coding repo safety skill with secret scanning, SAST, GitHub read guard, MCP safety, and incident cleanup.
security ai-coding vibe-coding skill claude-code agents +4
pup-appsec
Released
1 week ago
Version
0.1.0
Pup — an AI-native, evidence-based application security platform: contextual AI SAST, reachability-based SCA, and threat modelling for JavaScript/TypeScript.
security appsec sast sca threat-modeling ai +3
@zfuzz/cli
Released
17h ago
Version
0.2.0
Zfuzz security CLI — deterministic SAST, SCA, secret scanning and an MCP server for AI coding agents. Rust-native, sub-second, zero config. Static scanning is free and open source.
security sast sca secrets vulnerability scanner +4
@zfuzz/mcp
Released
17h ago
Version
0.2.0
Security copilot for your IDE. SAST, SCA, secrets, threat modeling — right where you code. Rust-native, zero config, runs 100% locally.
mcp security sast sca secrets vulnerability +5
@zhuma4/cli
Released
20h ago
Version
4.0.0-alpha.1
逐码 CLI — 命令行代码安全审计工具 (SAST + SCA)
sast security code-analysis semgrep sca supply-chain
@insom/insom
Released
3d ago
Version
1.0.1
Insomnia — SAST & offensive security toolkit launcher (insom.ai)
sast security insomnia insom static-analysis pentest +2
harness-code-security-mcp
Released
3d ago
Version
0.1.0
Qwiet / Harness SAST & SCA MCP server (stdio)
mcp qwiet harness sast sca security
cognium-dev
Released
5h ago
Version
3.119.0
Static Application Security Testing CLI for detecting security vulnerabilities via taint tracking
security sast static-analysis vulnerability cli taint-analysis +7
@seamshield/cli
Released
1 week ago
Version
0.3.17
Community access-lane scanner and local control engine for AI-built apps
security scanner cli ai vibecoding secrets +11
cognium-ai
Released
5h ago
Version
2.20.2
AI-powered static analysis CLI with LLM-enhanced vulnerability detection
security sast static-analysis vulnerability cli ai +2
@cognium-ai/mcp-server
Released
5h ago
Version
0.6.13
MCP server exposing Cognium spec-conformance, spec-drift, and pattern-search tools over stdio
mcp model-context-protocol sast specifica spec-conformance cognium
oauthlint
Released
8m ago
Version
0.7.1
Catch the OAuth/OIDC/JWT anti-patterns AI coding tools systematically produce. CLI wrapper around the oauthlint-rules Semgrep rule pack.
oauthlint semgrep oauth oauth2 oidc jwt +12
arhus-cli
Released
14h ago
Version
0.3.8
local-first security analysis for TypeScript & JavaScript
security scanner analysis typescript javascript cli +4
ose-auditor
Released
13h ago
Version
1.0.12
Run OSE Auditor (financial-logic security scanner for Node.js/TypeScript) without installing Python yourself -- this wrapper finds a Python 3 interpreter, installs the ose-auditor PyPI package on first run if needed, and forwards all arguments to it.
security audit sast vulnerability-scanner nodejs typescript +1
salus-appsec
Released
47m ago
Version
1.0.16
Salus — CLI de AppSec com IA. Code review, análise de vulnerabilidades, hardening defensivo e auditoria AI/LLM. Modo BYOK (Bring Your Own Key).
appsec cli ai code-review owasp openai +12
foxguard
Released
1 week ago
Version
0.9.0
A security scanner as fast as a linter, written in Rust. 170+ built-in rules across 10 languages.
security linter static-analysis sast vulnerability scanner
sic-security
Released
3d ago
Version
7.0.0
SIC free code scanner — read-only static analysis for hardcoded secrets, dangerous patterns, and dependency CVEs. Zero runtime dependencies.
security static-analysis sast secrets-detection code-scanner vulnerability +1
securescout-cli
Released
43m ago
Version
0.1.7
SecureScout pre-commit security scanner
security pre-commit sast secrets-detection git-hook
@ship-safe/cli
Released
yesterday
Version
1.1.18
Security scanner for AI-generated code — find vulnerabilities before you ship
security scanner vulnerability ai code-review sast +6