🤖 Dependabot's core logic for creating update PRs.

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

The most powerful and modular diffusion model GUI, api and backend with a graph/nodes interface.

Bring portraits to life!

A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

NOTE: Most of the contents of this repository have been migrated to the new devcontainers GitHub org (https://github.com/devcontainers). See https://github.com/devcontainers/template-starter and ht…

Generate SBOMs with gh CLI

The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Query the GitHub Audit Log for your organization to send it over to other services like elastic, splunk or sentinel for visualization and security

Kubestack is a framework for Kubernetes platform engineering teams to define the entire cloud native stack in one Terraform code base and continuously evolve the platform safely through GitOps.

Terraform samples for all the major clouds you can copy and paste. The future, co-created.

Scalar: A set of tools and extensions for Git to allow very large monorepos to run on Git without a virtualization layer

[Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instead

Examples of Custom Secret Scanning Patterns

This is a step-by-step guide to implementing a DevSecOps program for any size organization

cloc counts blank lines, comment lines, and physical lines of source code in many programming languages.

Visual Studio Code