gittyupsec.com
git-alerts
gittyupsec.com | git-alerts | |
---|---|---|
1 | 11 | |
1 | 190 | |
- | 0.5% | |
10.0 | 5.4 | |
over 1 year ago | 19 days ago | |
Go | Go | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
gittyupsec.com
-
Free/low cost threat sources/analysis services with generous quotas for API usage?
It’s open source and you’re free to run your own instance of it (written in Go and currently working on a CLI) which shouldn’t be too hard to do and is what I’d recommend since an admin token is required due to GitHub API’s requirements around reading branch projections programmatically.
git-alerts
- GitHub - boringtools/git-alerts: Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
- GitHub - boringtools/git-alerts: A Public Git repository
- GitHub - boringtools/git-alerts: A Public Git repository & misconfiguration detection tool
- A Public Git repository and misconfiguration detection tool
- boringtools/git-alerts: A Public Git repository & misconfiguration detection tool
- Monitor your users Public GitHub Repositories
- A Public Git repository & misconfiguration detection tool
What are some alternatives?
deadshot - Deadshot is a Github pull request scanner to identify sensitive data being committed to a repository
secrets-patterns-db - Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
leaky-repo - Benchmarking repo for secrets scanning
GitGoat - GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfiguration prevention strategy. It can be used to test products with access to GitHub repositories without a risk to your production environment.
github-leak-audit - A GitHub workflow to identify employees that have leaked your organization's code
gh-action-pypi-publish - The blessed :octocat: GitHub Action, for publishing your :package: distribution files to PyPI: https://github.com/marketplace/actions/pypi-publish
whispers - Identify hardcoded secrets in static structured text