Insider CLI
A static application security testing (SAST) CLI tool that scans source code for OWASP Top 10 vulnerabilities across multiple programming languages.
What is Insider CLI?
Insider is an open-source Static Application Security Testing (SAST) CLI tool that scans source code to identify security vulnerabilities, specifically targeting the OWASP Top 10 risks. It helps development teams integrate security testing directly into their DevOps pipelines, enabling early detection of issues in languages like Java, .NET, JavaScript, Swift, and Kotlin. The tool is designed to be agile, easy to implement, and supports multiple output formats for reporting.
Development and DevOps teams working with Java, .NET, JavaScript, Swift, or Kotlin who need to integrate security scanning into their CI/CD pipelines. It's particularly useful for organizations prioritizing OWASP compliance and seeking a lightweight, open-source SAST solution.
Insider offers a free, open-source alternative to commercial SAST tools with a strong focus on the OWASP Top 10 and seamless DevOps integration. Its CLI-based design, support for multiple languages, and availability as a GitHub Action make it exceptionally easy to adopt and automate within existing development workflows.
Overview
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Use Cases
Best For
Related Projects
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
