Skip to content

Filters

Clear

Security

Find, fix, and prevent security vulnerabilities before they can be exploited.

293 results for "sort:popularity-desc" filtered by Security Verified Creator

Apps

GitGuardian

By GitGuardian

The #1 GitHub Security App – Find and fix hardcoded secrets in your GitHub repositories

349k installs

Snyk

By snyk

Find, fix (and prevent!) known vulnerabilities in your code

208k installs

SonarCloud

By SonarSource

Empowering developers to detect Security Vulnerabilities, Bugs, and Code Smells in pull requests and repositories

157k installs

Renovate

By renovatebot

Keep dependencies up-to-date with automated Pull Requests

37.5k installs

Semgrep

By semgrep

Code scanning at ludicrous speed. Find bugs and reachable dependency vulnerabilities. Enforce standards on every commit

6.2k installs

Mend Bolt

By mend

Detect open source vulnerabilities in real time with suggested fixes for quick remediation

5.7k installs

Socket Security

By SocketDev

Protect your app from malicious open source dependencies

5.5k installs

Bridgecrew

By bridgecrewio

Find and fix security and compliance issues in Terraform, AWS Cloudformation, ARM templates, Kubernetes, and more

5.1k installs

Rewind Backups for GitHub

By backhub

Automatic daily backups of your GitHub repos and metadata with on-demand restores to protect your business

Recommended

Drata (Version Control)

By drata

The Drata (Version Control) app uses read-only repo access to continuously monitor your SOC 2 compliance posture

3.4k installs
View all

Actions

shield

TruffleHog OSS

By trufflesecurity

Creator verified by GitHub

Scan Github Actions with TruffleHog

13.9k stars
oxsecurity

MegaLinter

By oxsecurity

Creator verified by GitHub

Combine all available linters to automatically validate your sources without configuration

1.7k stars
google-github-actions

Authenticate to Google Cloud

By google-github-actions

Creator verified by GitHub

Authenticate to Google Cloud from GitHub Actions via Workload Identity Federation or service account keys

827 stars
legit-labs

Legitify Analyze

By Legit-Labs

Creator verified by GitHub

Legitify GitHub Action

708 stars
aquasecurity

Aqua Security Trivy

By aquasecurity

Creator verified by GitHub

Scans container images for vulnerabilities with Trivy

684 stars
sonarsource

SonarCloud Scan

By SonarSource

Creator verified by GitHub

Scan your code with SonarCloud to detect bugs, vulnerabilities and code smells in 26+ programming languages.

568 stars
code

mobsfscan

By MobSF

Creator verified by GitHub

mobsfscan is a SAST that can find insecure code patterns in your Android and iOS source code

533 stars
actions

Dependency Review

By actions

Creator verified by GitHub

Prevent the introduction of dependencies with known vulnerabilities

530 stars
step-security

Harden-Runner

By step-security

Creator verified by GitHub

Harden-Runner provides runtime security for GitHub-hosted and self-hosted runners

505 stars
snyk

Snyk

By snyk

Creator verified by GitHub

Check your applications for vulnerabilties using Snyk

478 stars
View all

List your tool on GitHub Marketplace

Read the documentation

Learn how you can build tools to extend and improve developers' workflows.

Submit your tool for review

Share your app or GitHub Action with millions of developers.