Security Tools

The following security tools are implemented by Jit workflows to detect potential security vulnerabilities:

Security Tool

Layer

Objective

Documentation

Bandit

Code

Code scanning

repo

Gosec

Code

Code Scanning

repo

Semgrep

Code

Code scanning

repo

Gitleaks

Code

Secret detection

repo

Nancy

Code

Dependency check

repo

OWASP-dependency-check

Code

Dependency check

repo

npm-audit

Code

Dependency check

docs

Kics

Infrastructure

Infrastructure-as-code scanning

repo

Trivy

Infrastructure

Container scanning

repo

ZAP

Runtime

Dynamic scanning

repo

AirIAM

Least privilege

Least privileged IAM roles

repo

mfa-github-checker

3rd party app

GitHub 2FA checker

Jit tool

mfa-aws-checker

3rd party app

AWS 2FA checker

Jit tool

bp-github-checker

3rd party app

Branch Protection checker

Jit tool


Did this page help you?