Raven scans GitHub workflows, breaks them into components, and utilizes a knowledge base to identify vulnerabilities, making it easier for security teams to assess and address risks.
  • October 30, 2023

Raven: Open-source CI/CD pipeline security scanner

Raven is an open-source CI/CD pipeline security scanner designed to identify hidden risks in software development workflows. It scans GitHub workflows, breaks them down into components, and stores them in a Neo4j database. Raven uses a knowledge base built from extensive research on GitHub Actions. It consists of a downloader, indexer, query library, and reporting feature. Raven helps security teams work strategically with DevOps teams and improve their organization's security practices. The tool is available for free on GitHub.



Back to Home

Comments

  • No comments yet.

Comment

Recommended

The Ultimate Guide to Linux VPS Hosting for Businesses

The Ultimate Guide to Linux VPS Hosting for Businesses

 https://averthost.com/vps-hosting/

VPS vs Shared Hosting: Which is Right for Your Website?

Categories