Semgrep rules registry

Lightweight modern Python library to add security headers (CSP, HSTS, etc.) to Django, Flask, FastAPI, and more. Secure defaults or fully customizable.

Amplifying the voices of Black developers in open source because #BlackLivesMatter ✊🏾

WebAuthn ruby server library ― Make your Ruby/Rails web server become a conformant WebAuthn Relying Party

An S/MIME signing utility for use with Git

Tools about security.txt for Ruby

Reviews of U2F devices

Suborigins

Ruby library to perform server-side tracking into the official Google Analytics Measurement Protocol

Allows an application to delegate the capability to recover an account to an account controlled by the same user or entity at a third party service provider.

BinData - Reading and Writing Binary Data in Ruby

[On hold for now] A mechanism for origins to set their origin-wide configuration in a central location

Tool to generate a valid Content Security Policy headers, integrity hashes and inline hashes for your current webpage

JavaFX JRuby binding

HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors

Web Application Security Working Group repo

Ruby implementation of the Resin data flow assertion framework

Finding Paul Revere

Patch-level verification for Bundler

Manages application of security headers with many safe defaults

The Ruby community's gem hosting service.

Package secureheader adds some HTTP headers widely considered to improve safety of HTTP requests.

Guard::Zeus automatically starts and stops Zeus, and, through Guard, runs your tests when your files change.

Ruby wrapper around the Esprima static code analyzer for JavaScript.

SQL / SQLI tokenizer parser analyzer

Sublime Text 2 Guard Plugin - helps create a smoother development workflow.

Fork is maintained at https://github.com/guard/guard-brakeman Go there instead

Ship logs from files to a syslog server