Automated GitHub backups so you can recover fast, stay compliant, and never lose a line of code

GuardRails provides continuous security feedback for modern development teams

Backup repositories, metadata and LFS into AWS, Azure, OneDrive, GCP. SOC2 Type II compliant. Pay per repositories, not seats

Code scanning at ludicrous speed. Find bugs and reachable dependency vulnerabilities. Enforce standards on every commit

Automatic, daily repo and metadata backup - no maintenance needed: fast restore, DR, AWS, and S3 cloud storage support

Protect your app from malicious open source dependencies

We help developers write clean code

Runtime Code Review

Proactive vulnerability management and license compliance for your third-party components

Empowering developers to detect Security Vulnerabilities, Bugs, and Code Smells in pull requests and repositories

Automatically identify, fix and prevent vulnerabilities in your open source dependencies

Nightfall automatically detects PII, credentials, secrets, and more in GitHub repos via machine learning. Free tier

Bright is a powerful dynamic App & API security testing (DAST) platform that security teams trust and developers love

Secrets Security Platform - The most downloaded GitHub app lets you find and fix hardcoded API keys in code

Find and fix security and compliance issues in Terraform, AWS Cloudformation, ARM templates, Kubernetes, and more

Resolve vulnerabilities faster with highly relevant in-app secure coding learning

Your complete Salesforce code reviewer

The Drata (Version Control) app uses read-only repo access to continuously monitor your SOC 2 compliance posture

BluBracket is like Clippy for code security, but—you know—not as annoying and a lot more effective

HackerOne streamlines workflow between security & development to speed response, track GitHub issues & remediate faster