Automated Dependancy and Code Scanning Tools January 26, 2022, 12:18:54 am Snykhttps://snyk.io/Open source, free - paidIntegrates into IDEs, GitLab, GitHub, BitBucket, CI/CD and more.Supported languages:JavaScriptjQueryJava MavenJava GradlePythonRubyGoPHP.NETElixirScalaSwift and Objective-CGuardRailshttps://guardrails.io/Closed source, free - paidSupported languages:ApexCC++[Paid] .NETElixirGolang[Paid] JavaJavaScriptMobilePHPPythonRubyRustSolidityTypeScriptWhiteSource Renovatehttps://www.whitesourcesoftware.com/free-developer-tools/renovateOpen sourceOfficially integrates into GitHub only.Supported languages:NodeJSJavaScriptC#JavaC++.NETRubyPythonDependaBothttps://dependabot.com/Closed source, owned by GithubOnly updates dependencies.Supported languages:RubyJavaScriptPythonPHPElixirRustJava Maven (Beta)Java Gradle (Beta).NET (Beta)Go (Beta)Elm
Re: Automated Dependancy and Code Scanning Tools Reply #1 – January 26, 2022, 12:19:06 am SepGrephttps://semgrep.devOpen sourceIntegrate into GitHub, GitLab, Bitbucket, CircleCI, VSCode + moreSupported languages:GoJavaJavaScirptJSONPythonRubyTypescriptJSXTSXOCaml (Beta)PHP (Beta)C (Beta)YAML (Beta)Generic (ERB, Jinja, etc.) (Beta)