S

SAST

Test project with: Language: Java - Package Manager: Maven

GitLab PipeIntel - Scan GitLab CI pipelines for security and correctness issues using OPA policies and ShellCheck

SAST Analyzer for detecting leaked secrets

SAST Analyzer based on SpotBugs and Find Sec Bugs.

SAST Analyzer for Phoenix Elixir projects based on sobelow

SAST Analyzer based on Semgrep

SAST Analyzer for Salesforce Apex projects based on pmd

SAST Analyzer for Kubernetes manifests based on kubesec

GitLab Analyzer for Infrastructure as Code (IaC) projects that calls kics. This analyzer is written in Go using the command library shared by all analyzers.

GitLab's semgrep container image augmented with hundreds of additional Node.js/JavaScript/Typescript and Go rules from Semgrep's rule repository.

Static Application Security Testing (SAST) checks your source code for known vulnerabilities.

Test project with: Language: Python - Package Manager: Pip

Test project for Java Gradle

Test project with: Language: Scala - Package Manager: Sbt

Codequality jobs in pipelines https://docs.gitlab.com/ee/user/project/merge_requests/code_quality.html

Setup Static Application Secret Testing (SAST) in GitLab CI pipeline using NJSScan and Semgrep.

Go package for implementing shared vulnerability command interface for secure analyzers

A minimal custom SAST scanner that detects when web applications are configured to run in debug mode. Built in Rust as a tutorial for integrating third-party security scanners with GitLab Secure.

A post-processor for computing the scope+offset fingerprint.

Rule Repository for GitLab SAST