* [Lego v5.2.0](https://github.com/go-acme/lego) – Let's Encrypt client and ACME library written in Go. * [Grype v0.113.0](https://github.com/anchore/grype) – Vulnerability scanner for container images and filesystems. * [OpenFGA v1.17.0](https://github.com/openfga/openfga) – High-performance authorization engine for modeling and enforcing fine-grained access control inspired by Google Zanzibar. * [cnspec v13.21.0](https://github.com/mondoohq/cnspec) – Cloud-native policy-as-code engine that scans infrastructure, containers, Kubernetes, cloud services, and code for vulnerabilities and misconfigurations. * [MQL v13.21.0](https://github.com/mondoohq/mql) – Cloud-native graph-based query language for querying and discovering infrastructure assets across clouds, containers, and services. * [Trivy v0.71.0](https://github.com/aquasecurity/trivy) – Comprehensive security scanner for vulnerabilities, misconfigurations, and secrets across various targets. * [gosec v2.27.0](https://github.com/securego/gosec) – Inspects Go source code for security issues by scanning the AST and SSA representations. * [hoop.dev 1.86.0](https://github.com/hoophq/hoop) – Proxy that secures and simplifies access to infrastructure with outbound-only connections and integrated SSO. * [Skylos v4.23.0](https://github.com/duriantaco/skylos) – Privacy-first hybrid static-analysis tool for Python, TypeScript, and Go that detects dead code, secrets, and security vulnerabilities. * [Password Pusher v2.7.1](https://github.com/pglombardo/PasswordPusher) – Securely share sensitive information with automatic expiration and deletion after a set number of views or duration. * [Infisical v0.160.10](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks. * [TruffleHog v3.95.4](https://github.com/trufflesecurity/trufflehog) – Powerful tool for discovering, classifying, validating, and analyzing leaked credentials. * [MCPProxy v0.35.0](https://github.com/smart-mcp-proxy/mcpproxy-go) – Desktop proxy enabling scalable tool discovery, major token savings, and quarantine of malicious upstream servers for AI agents. * [OpenCTI 7.260529.0](https://github.com/OpenCTI-Platform/opencti) – Platform for managing, structuring, visualizing, and sharing cyber threat intelligence using a STIX2-based knowledge schema. * [Kubescape v4.0.9](https://github.com/kubescape/kubescape) – Comprehensive security platform for managing and securing Kubernetes environments throughout the development and deployment lifecycle. * [Nuclei Templates v10.4.4](https://github.com/projectdiscovery/nuclei-templates) – Community curated templates for the nuclei engine to identify security vulnerabilities in applications. * [vet v1.17.3](https://github.com/safedep/vet) – Enterprise-grade software supply chain security tool with real-time malicious package detection and policy as code support. * [sigstore framework v1.10.8](https://github.com/sigstore/sigstore) – Common code library shared by Sigstore infrastructure and Go clients providing signing interfaces and OpenID Connect support. * [Aguara v0.22.0](https://github.com/garagon/aguara) – Security scanner for AI agent skills and MCP servers that detects prompt injection, data exfiltration, and supply-chain attacks via local static analysis. * [Secure-Repo v1.12.2](https://github.com/step-security/secure-repo) – Automatically apply security best practices to GitHub Actions workflows, Dockerfiles, and dependency configurations. * [Xalgorix v4.4.29](https://github.com/xalgord/xalgorix) – Autonomous AI-driven penetration testing platform that performs multi-mode scans, discovers zero-day vulnerabilities, and generates PDF reports with live dashboard alerts. * [Data security Stack for TypeScript @cipherstash/wizard@...](https://github.com/cipherstash/stack) – End-to-end field-level encryption for TypeScript apps with zero-knowledge key management and searchable encrypted queries. * [sigstore-js @sigstore/mock@0.13....](https://github.com/sigstore/sigstore-js) – JavaScript libraries for interacting with Sigstore signing and verification services. * [CipherStash Proxy v2.2.2](https://github.com/cipherstash/proxy) – Transparent searchable encryption for existing PostgreSQL databases without SQL changes. * [AppArmor.d v0.4908.0](https://github.com/roddhjav/apparmor.d) – Set of over 1500 AppArmor profiles to confine core Linux system services, desktop environments, and user processes. * [Greenmask v0.2.21](https://github.com/GreenmaskIO/greenmask) – Tool for database anonymization and synthetic data generation. * [CoWork OS v0.5.48](https://github.com/CoWork-OS/CoWork-OS) – Security-first personal AI assistant runtime providing multi-provider model access and multi-channel messaging integrations with local-first data control. * [BlueHydra 1.9.21](https://github.com/ZeroChaos-/blue_hydra) – Bluetooth device discovery service built on BlueZ that tracks classic and LE devices and uses Ubertooth where available. * [EVE 16.0.1-rc4](https://github.com/lf-edge/eve) – Edge virtualization engine providing hardware-assisted virtualization and resource partitioning for on-premises edge devices. * [Tracecat 1.0.0-beta.49-rc.2](https://github.com/TracecatHQ/tracecat) – Modern automation platform for security and IT engineers with YAML templates, no-code workflows, lookup tables, and case management. * [Wazuh Dashboard Plugins v4.14.6-rc1](https://github.com/wazuh/wazuh-dashboard-plugins) – Collection of plugins that extend the Wazuh dashboard with UI panels for security events, integrity, vulnerability, and compliance monitoring. * [OpenSSF Best Practices Badge sbom-production-2026...](https://github.com/coreinfrastructure/best-practices-badge) – Web-based badging system and criteria for assessing and encouraging best practices in FLOSS projects. * [Vigolium v0.1.18-beta](https://github.com/vigolium/vigolium) – High-fidelity vulnerability scanner combining deterministic native scans and AI-driven agentic code audits. * [Yaklang 1.4.7-beta7](https://github.com/yaklang/yaklang) – Cybersecurity-focused domain-specific programming language with a dedicated virtual machine and IDE support.