A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

🚀 Useful README.md, LICENSE, CONTRIBUTING.md, CODE_OF_CONDUCT.md, SECURITY.md, GitHub Issues, Pull Requests and Actions templates to jumpstart your projects.

GitHub Advance Security Compliance Action

A GitHub action for organizations that enables advanced security code scanning on all new repos

A secret scanner wrapper to aggregate results across multiple secret scanning tools

CodeScanAI is an open source tool that utilizes powerful AI models (OpenAI, Gemini, and even self-hosted servers) to scan your codebase for possible security vulnerabilities.

Aggressive regex based code scanner for Wordpress Themes/Plugins

Adapters and tools for lintrunner

Ansible role for 'terrascan'. Available on Ansible Galaxy.

🕵️🐍 Generate requirements.txt and pyproject.toml extras across modules, with configurable starting points, using import graph traversal and the python AST. Fully configurable and works with pre-commit.

Code Scanning is enabled / CodeQL is not configured

Code Scanning is enabled / CodeQL is configured

A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

My clone repository of the GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

CodeQL / custom configuration file