* [Cilium v1.19.0-rc.1](https://github.com/cilium/cilium) – Networking, observability, and security solution with an eBPF-based dataplane.

* [Password Pusher v1.67.0](https://github.com/pglombardo/PasswordPusher) – Securely share sensitive information with automatic expiration and deletion after a set number of views or duration.

* [Grype v0.106.0](https://github.com/anchore/grype) – Vulnerability scanner for container images and filesystems.

* [Interactsh v1.3.0](https://github.com/projectdiscovery/interactsh) – Out-of-band interaction gathering server and client library.

* [Powerpipe v1.5.0-rc.1](https://github.com/turbot/powerpipe) – Visualize data sources and run compliance benchmarks for effective decision-making and ongoing monitoring.

* [cnspec v12.20.0](https://github.com/mondoohq/cnspec) – Cloud-native policy-as-code engine that scans infrastructure, containers, Kubernetes, cloud services, and code for vulnerabilities and misconfigurations.

* [cnquery v12.20.0](https://github.com/mondoohq/cnquery) – Cloud-native, graph-based asset inventory and discovery tool for querying infrastructure across clouds, containers, Kubernetes, and VMs.

* [ldap-authentication v4.0.3](https://github.com/shaozi/ldap-authentication) – Node.js async LDAP/AD authentication library supporting admin bind, self-bind, user verification, and STARTTLS.

* [ldap-authentication v4.0.1](https://github.com/shaozi/ldap-authentication) – Node.js async LDAP/AD authentication library supporting admin bind, self-bind, user verification, and STARTTLS.

* [GoBetterAuth v2.0.0](https://github.com/GoBetterAuth/go-better-auth) – Scalable authentication for Go apps or standalone servers offering email/password auth, sessions, OAuth, and extensible hooks.

* [hoop.dev 1.49.0](https://github.com/hoophq/hoop) – Proxy that secures and simplifies access to infrastructure with outbound-only connections and integrated SSO.

* [Nuclei Templates v10.3.8](https://github.com/projectdiscovery/nuclei-templates) – Community curated templates for the nuclei engine to identify security vulnerabilities in applications.

* [go-tuf/v2 v2.4.1](https://github.com/theupdateframework/go-tuf) – Lightweight Go library for creating, signing, verifying, and managing secure software update metadata.

* [js-x-ray @nodesecure/tracer@3...](https://github.com/NodeSecure/js-x-ray) – JavaScript AST analysis tool for identifying potentially malicious code patterns.

* [Code Pathfinder v1.3.0](https://github.com/shivasurya/code-pathfinder) – Security suite combining graph-based structural code analysis with AI-assisted vulnerability detection and IDE/CI integrations.

* [vm2 v3.10.3](https://github.com/patriksimek/vm2) – Sandbox for running untrusted code with controlled access to Node.js built-in modules and secure context isolation.

* [MultiJuicer v9.1.0](https://github.com/juice-shop/multi-juicer) – Hosts and manages separate Juice Shop instances per participant on a Kubernetes cluster for CTFs and security trainings.

* [Claude Code Safety Net v0.7.1](https://github.com/kenryu42/claude-code-safety-net) – Plugin that intercepts and blocks destructive git and filesystem commands before they execute.

* [steady-tun v1.5.0](https://github.com/Snawoot/steady-tun) – TLS tunneling proxy forwarding TCP over a pool of pre-established upstream connections to reduce TLS handshake latency.

* [OpenCTI 6.9.10](https://github.com/OpenCTI-Platform/opencti) – Platform for managing, structuring, visualizing, and sharing cyber threat intelligence using a STIX2-based knowledge schema.

* [age-plugin-tpm v1.0.1](https://github.com/Foxboron/age-plugin-tpm) – TPM 2.0 plugin enabling age identities to be sealed for file encryption and decryption.

* [EVE 16.6.0](https://github.com/lf-edge/eve) – Edge virtualization engine providing hardware-assisted virtualization and resource partitioning for on-premises edge devices.

* [Cosmos v0.20.2](https://github.com/azukaar/Cosmos-Server) – Secure self-hosted home server solution for managing applications with built-in security and ease of use.

* [Claude Code Safety Net v0.7.0](https://github.com/kenryu42/claude-code-safety-net) – Plugin that intercepts and blocks destructive git and filesystem commands before they execute.

* [supautils v3.1.0](https://github.com/supabase/supautils) – Extension that secures PostgreSQL in cloud environments by managing privileges without requiring superuser access.

* [hoop.dev 1.48.2](https://github.com/hoophq/hoop) – Proxy that secures and simplifies access to infrastructure with outbound-only connections and integrated SSO.

* [Cosmos v0.20.1](https://github.com/azukaar/Cosmos-Server) – Secure self-hosted home server solution for managing applications with built-in security and ease of use.

* [StackRox Kubernetes Security Platform 4.8.8-rc.4](https://github.com/stackrox/stackrox) – Kubernetes security platform performing container environment risk analysis, providing visibility, runtime alerts, and hardening recommendations.

* [UTMStack v11.2.1](https://github.com/utmstack/UTMStack) – Enterprise-ready SIEM and XDR platform offering real-time log correlation, threat intelligence, and incident response.

* [vet v1.12.18](https://github.com/safedep/vet) – Enterprise-grade software supply chain security tool with real-time malicious package detection and policy as code support.

* [vet v1.12.17](https://github.com/safedep/vet) – Enterprise-grade software supply chain security tool with real-time malicious package detection and policy as code support.

* [CrowdSec v1.7.6](https://github.com/crowdsecurity/crowdsec) – Crowdsourced security solution for detecting and blocking malicious IPs.

* [Yaklang 1.4.5-beta8](https://github.com/yaklang/yaklang) – Cybersecurity-focused domain-specific programming language with a dedicated virtual machine and IDE support.

* [ghalint v1.5.5](https://github.com/suzuki-shunsuke/ghalint) – Lints GitHub Actions workflows and action.yaml for security best practices.

* [Kubescape v3.0.48](https://github.com/kubescape/kubescape) – Comprehensive security platform for managing and securing Kubernetes environments throughout the development and deployment lifecycle.

* [sigstore framework v1.10.4](https://github.com/sigstore/sigstore) – Common code library shared by Sigstore infrastructure and Go clients providing signing interfaces and OpenID Connect support.

* [step-ca v0.30.0-rc2](https://github.com/smallstep/certificates) – Private certificate authority for secure, automated certificate management in DevOps environments.

* [Snyk CLI v1.1302.1](https://github.com/snyk/cli) – Scans and monitors projects for security vulnerabilities in code, containers, dependencies, and infrastructure-as-code.

* [Password Pusher v1.66.2](https://github.com/pglombardo/PasswordPusher) – Securely share sensitive information with automatic expiration and deletion after a set number of views or duration.

* [cnspec v12.19.2](https://github.com/mondoohq/cnspec) – Cloud-native policy-as-code engine that scans infrastructure, containers, Kubernetes, cloud services, and code for vulnerabilities and misconfigurations.

* [Infisical v0.156.3](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.

* [cnquery v12.19.2](https://github.com/mondoohq/cnquery) – Cloud-native, graph-based asset inventory and discovery tool for querying infrastructure across clouds, containers, Kubernetes, and VMs.

* [Infisical v0.156.2](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.

* [Infisical v0.156.1](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.

* [Infisical v0.156.0](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.

* [Cloudlist v1.3.0](https://github.com/projectdiscovery/cloudlist) – Multi-cloud tool for listing and aggregating assets from various cloud providers into a centralized inventory.

* [Pike v0.3.91](https://github.com/JamesWoolfenden/pike) – Tool to determine minimum permissions required for Terraform and Infrastructure as Code deployments.

* [CrowdSec v1.7.5](https://github.com/crowdsecurity/crowdsec) – Crowdsourced security solution for detecting and blocking malicious IPs.

* [go-tuf/v2 v2.4.0](https://github.com/theupdateframework/go-tuf) – Lightweight Go library for creating, signing, verifying, and managing secure software update metadata.

* [JS Recon Buddy v1.20.2](https://github.com/TheArqsz/JSRecon-Buddy) – Browser extension that overlays security-related information found on webpages without disrupting workflow.

* [Infisical v0.155.7](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.

* [hoop.dev 1.48.1](https://github.com/hoophq/hoop) – Proxy that secures and simplifies access to infrastructure with outbound-only connections and integrated SSO.

* [Substation v2.8.0](https://github.com/brexhq/substation) – Toolkit for routing, normalizing, and enriching security event and audit logs.

* [cnspec v12.19.1](https://github.com/mondoohq/cnspec) – Cloud-native policy-as-code engine that scans infrastructure, containers, Kubernetes, cloud services, and code for vulnerabilities and misconfigurations.

* [cnquery v12.19.1](https://github.com/mondoohq/cnquery) – Cloud-native, graph-based asset inventory and discovery tool for querying infrastructure across clouds, containers, Kubernetes, and VMs.

* [Protect.js @cipherstash/protect...](https://github.com/cipherstash/protectjs) – TypeScript package for encrypting and decrypting data using unique keys for each value.

* [OpenZiti SDK for NodeJS 0.23.1](https://github.com/openziti/ziti-sdk-nodejs) – SDK enabling zero-trust networking for Node.js applications and web servers.

* [Django RLS v0.4.1](https://github.com/kdpisda/django-rls) – PostgreSQL row-level security integration for Django, enabling tenant/user policies defined with Q objects.

* [cnspec v12.19.0](https://github.com/mondoohq/cnspec) – Cloud-native policy-as-code engine that scans infrastructure, containers, Kubernetes, cloud services, and code for vulnerabilities and misconfigurations.

* [Code Pathfinder v1.2.2](https://github.com/shivasurya/code-pathfinder) – Security suite combining graph-based structural code analysis with AI-assisted vulnerability detection and IDE/CI integrations.

* [OpenZiti SDK for NodeJS 0.22.0](https://github.com/openziti/ziti-sdk-nodejs) – SDK enabling zero-trust networking for Node.js applications and web servers.

* [OpenZiti SDK for NodeJS 0.21.2](https://github.com/openziti/ziti-sdk-nodejs) – SDK enabling zero-trust networking for Node.js applications and web servers.

* [OpenZiti SDK for NodeJS 0.21.0](https://github.com/openziti/ziti-sdk-nodejs) – SDK enabling zero-trust networking for Node.js applications and web servers.

* [JS Recon Buddy v1.20.1](https://github.com/TheArqsz/JSRecon-Buddy) – Browser extension that overlays security-related information found on webpages without disrupting workflow.

* [hoop.dev 1.48.0](https://github.com/hoophq/hoop) – Proxy that secures and simplifies access to infrastructure with outbound-only connections and integrated SSO.

* [cnquery v12.19.0](https://github.com/mondoohq/cnquery) – Cloud-native, graph-based asset inventory and discovery tool for querying infrastructure across clouds, containers, Kubernetes, and VMs.

* [go-tuf/v2 v2.3.1](https://github.com/theupdateframework/go-tuf) – Lightweight Go library for creating, signing, verifying, and managing secure software update metadata.

* [Infisical v0.155.6](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.

* [Yaklang 1.4.5-beta7](https://github.com/yaklang/yaklang) – Cybersecurity-focused domain-specific programming language with a dedicated virtual machine and IDE support.

* [Claude Code Safety Net v0.6.2](https://github.com/kenryu42/claude-code-safety-net) – Plugin that intercepts and blocks destructive git and filesystem commands before they execute.

* [Code Pathfinder v1.2.1](https://github.com/shivasurya/code-pathfinder) – Security suite combining graph-based structural code analysis with AI-assisted vulnerability detection and IDE/CI integrations.

* [MCPProxy v0.15.1](https://github.com/smart-mcp-proxy/mcpproxy-go) – Desktop proxy enabling scalable tool discovery, major token savings, and quarantine of malicious upstream servers for AI agents.

* [JS Recon Buddy v1.20.0](https://github.com/TheArqsz/JSRecon-Buddy) – Browser extension that overlays security-related information found on webpages without disrupting workflow.

* [Password Pusher v1.66.1](https://github.com/pglombardo/PasswordPusher) – Securely share sensitive information with automatic expiration and deletion after a set number of views or duration.

* [hibp v15.2.1](https://github.com/wKovacs64/hibp) – Unofficial TypeScript SDK for querying the Have I been pwned? service.

* [JS Recon Buddy v1.19.4](https://github.com/TheArqsz/JSRecon-Buddy) – Browser extension that overlays security-related information found on webpages without disrupting workflow.

* [rnsec v1.1.0](https://github.com/adnxy/rnsec) – Lightweight, fast security scanner for React Native and Expo that detects vulnerabilities, secrets, and misconfigurations.

* [Prosopo Procaptcha v3.5.21](https://github.com/prosopo/captcha) – Drop-in replacement for reCAPTCHA, hCaptcha, and Cloudflare Turnstile that protects user privacy and collects no data.

* [Code Pathfinder v1.2.0](https://github.com/shivasurya/code-pathfinder) – Security suite combining graph-based structural code analysis with AI-assisted vulnerability detection and IDE/CI integrations.

* [JS Recon Buddy v1.19.2](https://github.com/TheArqsz/JSRecon-Buddy) – Browser extension that overlays security-related information found on webpages without disrupting workflow.

* [vm2 v3.10.2](https://github.com/patriksimek/vm2) – Sandbox for running untrusted code with controlled access to Node.js built-in modules and secure context isolation.

* [JS Recon Buddy v1.19.1](https://github.com/TheArqsz/JSRecon-Buddy) – Browser extension that overlays security-related information found on webpages without disrupting workflow.

* [socket-proxy 1.11.0](https://github.com/wollomatic/socket-proxy) – Lightweight secure-by-default Unix socket proxy offering regex-based method allowlists, IP-based access control, and a minimal Go-only image.

* [Dalec v0.20.1](https://github.com/project-dalec/dalec) – Declarative format and toolchain for building secure system packages and containers with SBOMs and provenance attestations.

* [TruffleHog v3.92.5](https://github.com/trufflesecurity/trufflehog) – Powerful tool for discovering, classifying, validating, and analyzing leaked credentials.

* [Yaklang 1.4.5-beta6](https://github.com/yaklang/yaklang) – Cybersecurity-focused domain-specific programming language with a dedicated virtual machine and IDE support.

* [Nuxt Security v2.5.1](https://github.com/Baroshem/nuxt-security) – Module for automatically applying OWASP security headers and middleware in Nuxt 3 applications.

* [Secure-Repo v1.9.1](https://github.com/step-security/secure-repo) – Automatically apply security best practices to GitHub Actions workflows, Dockerfiles, and dependency configurations.

* [chezmoi v2.69.3](https://github.com/twpayne/chezmoi) – Manage dotfiles across multiple diverse machines securely.

* [chezmoi v2.69.2](https://github.com/twpayne/chezmoi) – Manage dotfiles across multiple diverse machines securely.

* [Grype v0.105.0](https://github.com/anchore/grype) – Vulnerability scanner for container images and filesystems.

* [Cosmos v0.20.0](https://github.com/azukaar/Cosmos-Server) – Secure self-hosted home server solution for managing applications with built-in security and ease of use.

* [StackRox Kubernetes Security Platform 4.8.8-rc.2](https://github.com/stackrox/stackrox) – Kubernetes security platform performing container environment risk analysis, providing visibility, runtime alerts, and hardening recommendations.

* [Claude Code Safety Net v0.6.0](https://github.com/kenryu42/claude-code-safety-net) – Plugin that intercepts and blocks destructive git and filesystem commands before they execute.

* [Tracecat 0.53.21](https://github.com/TracecatHQ/tracecat) – Modern automation platform for security and IT engineers with YAML templates, no-code workflows, lookup tables, and case management.

* [OpenCTI 6.9.8](https://github.com/OpenCTI-Platform/opencti) – Platform for managing, structuring, visualizing, and sharing cyber threat intelligence using a STIX2-based knowledge schema.

* [JS Recon Buddy v1.19.0](https://github.com/TheArqsz/JSRecon-Buddy) – Browser extension that overlays security-related information found on webpages without disrupting workflow.

* [Infisical v0.155.5](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.

* [MCPProxy v0.14.0](https://github.com/smart-mcp-proxy/mcpproxy-go) – Desktop proxy enabling scalable tool discovery, major token savings, and quarantine of malicious upstream servers for AI agents.

* [OWASP secureCodeBox v5.5.0](https://github.com/secureCodeBox/secureCodeBox) – Kubernetes-based modular toolchain for continuous security scanning of software projects.

* [Wazuh Dashboard Plugins v4.14.2](https://github.com/wazuh/wazuh-dashboard-plugins) – Collection of plugins that extend the Wazuh dashboard with UI panels for security events, integrity, vulnerability, and compliance monitoring.

* [Infisical v0.155.4](https://github.com/Infisical/infisical) – Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.

* [Witness v0.10.2](https://github.com/in-toto/witness) – Dynamic CLI tool for creating and verifying software supply chain attestations using the in-toto specification.