https://github.com/pumasecurity/puma-scan

Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.
https://github.com/pumasecurity/puma-scan

Last synced: 6 days ago
JSON representation

Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.

• Host: GitHub
• URL: https://github.com/pumasecurity/puma-scan
• Owner: pumasecurity
• License: mpl-2.0
• Created: 2016-10-19T23:02:06.000Z (about 8 years ago)
• Default Branch: main
• Last Pushed: 2022-10-28T22:32:08.000Z (about 2 years ago)
• Last Synced: 2024-08-02T07:13:29.118Z (3 months ago)
• Language: C#
• Homepage: https://www.pumascan.com
• Size: 1.27 MB
• Stars: 443
• Watchers: 37
• Forks: 82
• Open Issues: 23
• Metadata Files:
  • Readme: README.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE

Awesome Lists containing this project

• awesome-devsecops - Puma Scan - _Puma Security_ - A Visual Studio plugin to scan .NET projects for potential security flaws. (Tools / Static Analysis)
• awesome-dotnet-security - Puma Scan - Puma Scan is a .NET software secure code analysis tool providing real time, continuous source code analysis. (Static Code Analysis)

README

        
![Puma Scan](https://www.pumascan.com/img/logo-horiz.png)

[![Build status](https://dev.azure.com/pumascan/Puma%20Scan/_apis/build/status/Puma%20Scan%20Community/Puma%20Scan%20Community%20-%20Release)](https://dev.azure.com/pumascan/Puma%20Scan/_build/latest?definitionId=24)

[![Black Hat Arsenal](https://www.pumascan.com/img/bh-arsenal-2017.svg)](https://www.blackhat.com/asia-17/arsenal.html#eric-johnson) [![Black Hat Arsenal](https://www.pumascan.com/img/bh-arsenal-2018.svg)](https://www.blackhat.com/us-18/arsenal/schedule/index.html#puma-scan-12003)

# Description

Puma Scan is a .NET software secure code analysis tool providing real time, continuous source code analysis as development teams write code. In Visual Studio, vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications. Puma Scan also integrates into the build to provide security analysis at compile time.

# Documentation

The Puma Scan Community Edition install instructions and documentation can be found on the [GitHub Wiki](https://github.com/pumasecurity/puma-scan/wiki).

# Building Your Own Rules

Interested in building your own rules and contributing back to the security community? Read our blog on [Building Your Own Security Analyzer](https://pumasecurity.io/resources/blog/contributing-to-puma-scan-community-edition/).

# License Agreement

The Puma Scan Community Edition is licensed under the Mozilla Public License (MPL) version 2.0.

# Contributing

Contributions are welcome. Fork and send us a pull request!

# Contributors

- [Eric Johnson](https://github.com/ejohn20) - Principal Security Engineer, Puma Security

- [Eric Mead](https://github.com/meadisu27) - Principal Security Engineer, Puma Security

- [Andrew Guggenberger](https://github.com/aguggenberger) - Senior Security Engineer

- [Greg Pakes](https://github.com/gregpakes)