{"id":17714525,"url":"https://github.com/neuralegion/sectester-js","last_synced_at":"2026-03-17T21:10:10.540Z","repository":{"id":37979252,"uuid":"462845843","full_name":"NeuraLegion/sectester-js","owner":"NeuraLegion","description":"SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.","archived":false,"fork":false,"pushed_at":"2025-05-31T16:36:06.000Z","size":5884,"stargazers_count":6,"open_issues_count":3,"forks_count":4,"subscribers_count":14,"default_branch":"master","last_synced_at":"2025-06-20T10:11:31.586Z","etag":null,"topics":["appsec","brightsec","e2e","pentesting","qa","security","test","testing","typescript"],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/NeuraLegion.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2022-02-23T17:50:09.000Z","updated_at":"2025-05-31T16:36:08.000Z","dependencies_parsed_at":"2024-05-22T07:37:42.120Z","dependency_job_id":"78663578-e03e-4c43-a3bc-fef8aa7ad6d5","html_url":"https://github.com/NeuraLegion/sectester-js","commit_stats":{"total_commits":197,"total_committers":8,"mean_commits":24.625,"dds":0.649746192893401,"last_synced_commit":"51440cd2eaa3ba618e5e1dac6d50eb7f6e985e68"},"previous_names":["neuralegion/secbox-sdk-js","neuralegion/sec-tester-js"],"tags_count":93,"template":false,"template_full_name":null,"purl":"pkg:github/NeuraLegion/sectester-js","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NeuraLegion%2Fsectester-js","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NeuraLegion%2Fsectester-js/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NeuraLegion%2Fsectester-js/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NeuraLegion%2Fsectester-js/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/NeuraLegion","download_url":"https://codeload.github.com/NeuraLegion/sectester-js/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NeuraLegion%2Fsectester-js/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":261080561,"owners_count":23106597,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["appsec","brightsec","e2e","pentesting","qa","security","test","testing","typescript"],"created_at":"2024-10-25T11:15:13.184Z","updated_at":"2026-01-22T13:34:04.734Z","avatar_url":"https://github.com/NeuraLegion.png","language":"TypeScript","readme":"# SecTester SDK for JavaScript\n\n[![Maintainability](https://qlty.sh/gh/NeuraLegion/projects/sectester-js/maintainability.svg)](https://qlty.sh/gh/NeuraLegion/projects/sectester-js)\n[![Code Coverage](https://qlty.sh/gh/NeuraLegion/projects/sectester-js/coverage.svg)](https://qlty.sh/gh/NeuraLegion/projects/sectester-js)\n![Build Status](https://github.com/NeuraLegion/sectester-js/actions/workflows/coverage.yml/badge.svg?branch=master\u0026event=push)\n![NPM Downloads](https://img.shields.io/npm/dw/@sectester/core)\n\n## Table of contents\n\n- [About the SecTester SDK](#about-the-sectester-sdk)\n- [About Bright \u0026 SecTester](#about-bright--sectester)\n- [Usage](#usage)\n  - [Installation](#installation)\n  - [Getting a Bright API key](#getting-a-bright-api-key)\n  - [Usage examples](#usage-examples)\n- [Documentation \u0026 Help](#documentation--help)\n- [Ecosystem](#ecosystem)\n- [Contributing](#contributing)\n- [License](#license)\n\n## About the SecTester SDK\n\nThis SDK is designed to provide all the basic tools and functions that will allow you to easily integrate the Bright security testing engine into your own project.\n\nWith the SDK you can:\n\n- Work with the Bright scan engine, without leaving your IDE\n- Build automations within your CI or local machine for security testing\n- Create your own framework/project specific wrappers (you can see some examples in the Documentation section)\n\n## About Bright \u0026 SecTester\n\nBright is a developer-first Dynamic Application Security Testing (DAST) scanner.\n\nSecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.\n\nWith SecTester you can:\n\n- Test every function and component directly\n- Run security scans at the speed of unit tests\n- Find vulnerabilities with no false positives, before you finalize your Pull Request\n\nTrying out Bright’s SecTester is _**free**_ 💸, so let’s get started!\n\n\u003e [!WARNING]  \n\u003e The SecTester project is currently in beta as an early-access tool. We are looking for your feedback to make it the best possible solution for developers, aimed to be used as part of your team’s SDLC. We apologize if not everything will work smoothly from the start, and hope a few bugs or missing features will be no match for you!\n\u003e\n\u003e Thank you! We appreciate your help and feedback!\n\n## Usage\n\n### Installation\n\nFirst install the module via `yarn` or `npm` and do not forget to install the peer dependencies as well:\n\n```bash\n$ npm i -s @sectester/runner \\\n  @sectester/core            \\\n  @sectester/repeater        \\\n  @sectester/reporter        \\\n  @sectester/scan\n```\n\nor\n\n```bash\n$ yarn add @sectester/runner  \\\n  @sectester/core             \\\n  @sectester/repeater         \\\n  @sectester/reporter         \\\n  @sectester/scan\n```\n\n### Getting a Bright API key\n\n1. Navigate to the [**User API key creation**](https://app.brightsec.com/profile) section on the profile page.\n2. Create a Bright API key ([**check out our doc on how to create a user key**](https://docs.brightsec.com/docs/manage-your-personal-account#manage-your-personal-api-keys-authentication-tokens))\n3. Save the Bright API key\n   1. We recommend using your Github repository secrets feature to store the key, accessible via the `Settings \u003e Security \u003e Secrets \u003e Actions` configuration. We use the ENV variable called `BRIGHT_TOKEN` in our examples\n   2. If you don’t use that option, make sure you save the key in a secure location. You will need to access it later on in the project but will not be able to view it again.\n   3. More info on [**how to use ENV vars in Github actions**](https://docs.github.com/en/actions/learn-github-actions/environment-variables)\n\n\u003e [!IMPORTANT]\n\u003e Create a Bright API key with the following scopes:\n\u003e\n\u003e - `auth-objects:read`\n\u003e - `bot`\n\u003e - `entry-points:read`\n\u003e - `entry-points:manage`\n\u003e - `issues:read`\n\u003e - `projects:read`\n\u003e - `repeaters:read`\n\u003e - `repeaters:write`\n\u003e - `scans:delete`\n\u003e - `scans:read`\n\u003e - `scans:run`\n\u003e - `scans:stop`\n\n\u003e [!TIP]\n\u003e Make sure your API key is saved in a location where you can retrieve it later! You will need it in these next steps!\n\n### Usage examples\n\nFull configuration \u0026 usage examples can be found in:\n\n- [Nest.js Demo](https://github.com/NeuraLegion/sectester-js-demo).\n- [Broken Crystals Demo](https://github.com/NeuraLegion/sectester-js-demo-broken-crystals).\n- [ASP.NET Demo](https://github.com/NeuraLegion/sectester-net-demo).\n\n## Documentation \u0026 Help\n\n- Full documentation available at: https://docs.brightsec.com/\n- A demo project can forked from: https://github.com/NeuraLegion/sectester-js-demo\n- Join our [Discord channel](https://discord.gg/jy9BB7twtG) and ask anything!\n\n## Ecosystem\n\n- [SecTester JS SDK](https://github.com/NeuraLegion/sectester-js).\n- [SecTester NET SDK](https://github.com/NeuraLegion/sectester-net).\n\n## Contributing\n\nPlease read [contributing guidelines here](./CONTRIBUTING.md).\n\n\u003ca href=\"https://github.com/NeuraLegion/sectester-js/graphs/contributors\"\u003e\n  \u003cimg src=\"https://contrib.rocks/image?repo=NeuraLegion/sectester-js\"/\u003e\n\u003c/a\u003e\n\n## License\n\nCopyright © 2025 [Bright Security](https://brightsec.com/).\n\nThis project is licensed under the MIT License - see the [LICENSE file](LICENSE) for details.\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fneuralegion%2Fsectester-js","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fneuralegion%2Fsectester-js","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fneuralegion%2Fsectester-js/lists"}