Awesome List Updates on Sep 19, 2025
2 awesome lists updated today.
đ Home ¡ đ Search ¡ đĨ Feed ¡ đŽ Subscribe ¡ â¤ī¸ Sponsor
1. Static Analysis
Other / Other
- OSV-Scanner â Vulnerability scanner written in Go which uses the data provided by OSV.dev. Developed by Google to scan dependencies across multiple languages and package managers for known vulnerabilities. Supports container scanning, license scanning, and guided remediation. Works with lockfiles, SBOMs, and container images to identify security issues.
- pip-audit (â1.1k) â Tool for scanning Python packages for known vulnerabilities. Developed by the Python Packaging Authority (PyPA) and supported by Trail of Bits and Google. Scans Python environments and requirements files to identify vulnerable packages and suggests remediation. Supports GitHub Actions, pre-commit hooks, and multiple vulnerability service integrations.
- Safety â Python dependency vulnerability scanner designed to enhance software supply chain security by detecting packages with known vulnerabilities. Checks Python dependencies against a database of known security vulnerabilities and provides detailed reports. Supports CI/CD integration and multiple output formats.
- Malcat Šī¸ â Hexadecimal editor and disassembler for malware analysis and binary file inspection. Supports over 50 file formats and multiple CPU architectures (x86/x64, MIPS, .NET, Python, VB p-code). Features rapid analysis, embedded file extraction, Yara signature scanning, anomaly detection, and Python scripting. Designed for malware analysts, SOC operators, incident responders, and CTF players.
- Dockle (â3.1k) â Container Image Linter for Security helping build the Best-Practice Docker Image. Scans Docker images for security vulnerabilities and CIS Benchmark compliance. Checks for secrets, credential exposure, and security best practices. Provides multiple severity levels (FATAL, WARN, INFO) and supports various output formats for CI/CD integration.
- Grype (â11k) â Vulnerability scanner for container images and filesystems. Developed by Anchore, it scans container images, directories, and archives for known vulnerabilities. Supports multiple image formats, SBOM integration, and VEX (Vulnerability Exploitability eXchange) for accurate vulnerability assessment. Works with various vulnerability databases and provides detailed reporting.
Programming Languages / Other
- MISS_HIT â ī¸ â MISS_HIT is a free, open-source code quality toolset for MATLAB, Simulink, and Octave. It includes MH Style (style checker and formatter), MH Metrics (complexity metrics), MH Lint (static analysis), MH Trace (requirements traceability), and MH Copyright (copyright management). Designed to work standalone without requiring MATLAB/Octave installation.
- tsqllint â ī¸ â T-SQL-specific linter.
Multiple languages / Other
- sqlvet â ī¸ â Performs static analysis on raw SQL queries in your Go code base to surface potential runtime errors. It checks for SQL syntax error, identifies unsafe queries that could potentially lead to SQL injections makes sure column count matches value count in INSERT statements and validates table- and column names.
2. Awesome Go
Command Line / Standard CLI
- leaanthony/clir (â196) â A Simple and Clear CLI library. Dependency free. â
195
Utilities / Utility/Miscellaneous
- karl-cardenas-coding/go-lambda-cleanup (â96) â go-lambda-cleanup - A solution for removing previous versions of AWS Lambdas â
96
- Prev: Sep 20, 2025
- Next: Sep 18, 2025