Skip to content
#

open-source-security

Here are 100 public repositories matching this topic...

High-performance open-source security scanner combining SAST, SCA, Secret Detection, and IaC analysis, built for developers and CI/CD pipelines, using AI for recommendation!

  • Updated Jul 7, 2026
  • Go

A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling, books, articles and a plethora of learning resources from the web.

  • Updated Jan 28, 2024

Detect npm packages compromised in the Shai-Hulud 2.0 supply chain attack (Nov 2025). Scans for 790+ malicious packages, suspicious scripts, TruffleHog activity, SHA1HULUD runners, and secrets exfiltration. GitHub Action with SARIF support.

  • Updated Jul 11, 2026
  • TypeScript
hookprobe

🛡️ Free AI that blocks hackers while you sleep. Runs on cheap hardware. When someone in Tokyo gets attacked, you're protected in 30 seconds. No fees. No experts needed. Just protection. One node's detection → everyone's protection.

  • Updated Jun 30, 2026
  • Python

TuxCare SecureChain enhances Java supply chain security through vetted libraries, vulnerability fixes, and extended support. Ideal for enterprise-level compliance and secure development.

  • Updated Oct 13, 2025

Comprehensive taxonomy of AI security vulnerabilities, LLM adversarial attacks, prompt injection techniques, and machine learning security research. Covers 71+ attack vectors including model poisoning, agentic AI exploits, and privacy breaches.

  • Updated Sep 19, 2025

AIDEFEND MCP is a local-first AI Security Defensive Assistant that brings the full AIDEFEND countermeasure library into your environment and turns static knowledge into actionable protection for LLMs and agentic AI systems — privately, securely, and on-device.

  • Updated Apr 14, 2026
  • Python

A zero dependency lightweight static analyzer + CVE scanner designed for adversarial-shape code in python to detect supply chain attacks before they reach your interpreter.

  • Updated Jul 4, 2026
  • Python

BomLens — a local-first SBOM generator & open-source risk assessor (CycloneDX). Produce an SBOM, an open-source notice, and a security/license risk report from source code, containers, binaries, firmware, or an SBOM you received. CLI or web UI, no SaaS.

  • Updated Jul 10, 2026
  • Shell

Improve this page

Add a description, image, and links to the open-source-security topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the open-source-security topic, visit your repo's landing page and select "manage topics."

Learn more