Skip to content

Filters

Clear

Security

Find, fix, and prevent security vulnerabilities before they can be exploited.

1348 results for "sort:popularity-desc" filtered by Security

Apps

GitGuardian

By GitGuardian

The #1 GitHub Security App – Find and fix hardcoded secrets in your GitHub repositories

348k installs

Snyk

By snyk

Find, fix (and prevent!) known vulnerabilities in your code

209k installs

SonarCloud

By SonarSource

Empowering developers to detect Security Vulnerabilities, Bugs, and Code Smells in pull requests and repositories

157k installs

Renovate

By renovatebot

Keep dependencies up-to-date with automated Pull Requests

37.4k installs

Semgrep

By semgrep

Code scanning at ludicrous speed. Find bugs and reachable dependency vulnerabilities. Enforce standards on every commit

6.2k installs

Mend Bolt

By mend

Detect open source vulnerabilities in real time with suggested fixes for quick remediation

5.7k installs

Socket Security

By SocketDev

Protect your app from malicious open source dependencies

5.5k installs

Bridgecrew

By bridgecrewio

Find and fix security and compliance issues in Terraform, AWS Cloudformation, ARM templates, Kubernetes, and more

5.1k installs

Rewind Backups for GitHub

By backhub

Automatic daily backups of your GitHub repos and metadata with on-demand restores to protect your business

Recommended

Drata (Version Control)

By drata

The Drata (Version Control) app uses read-only repo access to continuously monitor your SOC 2 compliance posture

3.4k installs
View all

Actions

shield

TruffleHog OSS

By trufflesecurity

Creator verified by GitHub

Scan Github Actions with TruffleHog

13.9k stars
alert-circle

Is Website vulnerable

By lirantal

Scans a url for public javascript library vulnerabilities

1.9k stars
oxsecurity

MegaLinter

By oxsecurity

Creator verified by GitHub

Combine all available linters to automatically validate your sources without configuration

1.7k stars
search

Stelligent cfn_nag

By stelligent

Execute cfn_nag_scan against the code in the repository where the GitHub Action workflow is run

1.2k stars
google-github-actions

Authenticate to Google Cloud

By google-github-actions

Creator verified by GitHub

Authenticate to Google Cloud from GitHub Actions via Workload Identity Federation or service account keys

824 stars
legit-labs

Legitify Analyze

By Legit-Labs

Creator verified by GitHub

Legitify GitHub Action

707 stars
aquasecurity

Aqua Security Trivy

By aquasecurity

Creator verified by GitHub

Scans container images for vulnerabilities with Trivy

683 stars
sonarsource

SonarCloud Scan

By SonarSource

Creator verified by GitHub

Scan your code with SonarCloud to detect bugs, vulnerabilities and code smells in 26+ programming languages.

567 stars
code

mobsfscan

By MobSF

Creator verified by GitHub

mobsfscan is a SAST that can find insecure code patterns in your Android and iOS source code

532 stars
actions

Dependency Review

By actions

Creator verified by GitHub

Prevent the introduction of dependencies with known vulnerabilities

527 stars
View all

List your tool on GitHub Marketplace

Read the documentation

Learn how you can build tools to extend and improve developers' workflows.

Submit your tool for review

Share your app or GitHub Action with millions of developers.