devsecops

Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure

security authentication authorization api-testing hacktoberfest api-discovery owasp-top-10 devsecops security-testing api-security sensitive-data-exposure threat-detection idor devsecops-pipeline hacktoberfest2023 api-security-testing api-security-posture

Updated Sep 11, 2025
Java

HXSecurity / DongTai-agent-java

Star

Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

java agent iast devsecops appsec-tutorials applicationsecuritymonitoring dongtai-iast security-scan

Updated Dec 25, 2023
Java

praveensirvi1212 / DevSecOps-project

Star

DevSecOps Project using git, GitHub, jenkins, Maven,Junit, SonarQube, Docker, Trivy, Hashicorp Vault, AWS, Kubernetes

git java slack docker kubernetes aws-s3 sonarqube cicd hashicorp-vault devops-tools devsecops devsecops-pipeline trivy-scan

Updated Jun 23, 2023
Java

jenkinsci / snyk-security-scanner-plugin

Star

Test and monitor your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Snyk.

jenkins-plugin snyk devsecops

Updated Aug 26, 2025
Java

jenkinsci / fortify-on-demand-uploader-plugin

Star

Fortify on Demand Uploader

security jenkins-plugin fortify devsecops fod

Updated Jun 30, 2025
Java

rmkanda / secure-pipeline-java-demo

Star

security devops boilerplate demo pipeline jenkins-pipeline security-tools devsecops devsecops-pipeline devsecops-best-practices

Updated Jan 5, 2022
Java

jenkinsci / fortify-plugin

Star

Fortify Jenkins plugin

security jenkins-plugin fortify fortify-sca security-automation security-tools devsecops security-pipeline

Updated Feb 17, 2025
Java

fortify-presales / IWA-Java

Star

An insecure Java/Spring web application for use in DevSecOps scenarios.

java jquery jenkins devops spring maven sca webinspect fortify security-automation devsecops fod

Updated May 21, 2025
Java

jenkinsci / appscan-plugin

Star

security devsecops

Updated Sep 11, 2025
Java

tweag / bsidessf-hands-on-devsecops-2025

Star

BSides SF 2025: Shifting Left: A Hands-on Introductory Guide to DevSecOps

devsecops shift-left bsidessf

Updated May 2, 2025
Java

Skyscanner / sonar-secrets

Star

SonarQube plugin for identifying hardcoded secrets, such as passwords, API keys, AWS credentials, etc..

pipeline scanning devsecops hardcoded-credentials

Updated Dec 1, 2023
Java

pmckeown / dependency-track-maven-plugin

Star

Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable dependencies are found.

java owasp maven-plugin pom component-analysis maven-lifecycle devsecops software-composition-analysis security-software dependency-track bom-upload

Updated Jul 27, 2025
Java

HXSecurity / DongTai-Plugin-IDEA

Star

Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions such as vulnerability detection and code audit during application development, enabling developers to find application vulnerabilities more intuitively, quickly and in real time during application development.

security code-quality idea-plugin intellij-platform iast devsecops appsec-tutorials applicationsecuritymonitoring dongtai-iast

Updated Oct 17, 2023
Java

antgroup / CloudRec

Star

CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of their cloud environments.

security cloud cybersecurity opa scans aws-security multi-cloud devsecops cloud-security alibabacloud gcp-security cspm

Updated Sep 3, 2025
Java

rusakovichma / TicTaaC

Star

Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. Sugar-Free and Secure: no any external dependencies except for chart plotting are used

threat application-security threat-modeling appsec threat-model secure-development devsecops threat-modeling-tool threat-models threat-modeling-from-code

Updated Jun 25, 2025
Java

jenkinsci / conjur-credentials-plugin

Star

Conjur plugin for securely providing credentials to Jenkins jobs

security devops devsecops

Updated Aug 5, 2025
Java

Improve this page

Add a description, image, and links to the devsecops topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the devsecops topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

devsecops

Here are 80 public repositories matching this topic...

sidd-harth / kubernetes-devops-security

DependencyTrack / dependency-track

OWASP / wrongsecrets

advanced-security-demo / demo-java

akto-api-security / akto

HXSecurity / DongTai-agent-java

praveensirvi1212 / DevSecOps-project

jenkinsci / snyk-security-scanner-plugin

jenkinsci / fortify-on-demand-uploader-plugin

rmkanda / secure-pipeline-java-demo

jenkinsci / fortify-plugin

fortify-presales / IWA-Java

jenkinsci / appscan-plugin

tweag / bsidessf-hands-on-devsecops-2025

Skyscanner / sonar-secrets

pmckeown / dependency-track-maven-plugin

HXSecurity / DongTai-Plugin-IDEA

antgroup / CloudRec

rusakovichma / TicTaaC

jenkinsci / conjur-credentials-plugin

Improve this page

Add this topic to your repo