Scanmycode CE (Community Edition)

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report. Currently supports: PHP, Java, Scala, Python, Ruby, Javascript, GO, Secret Scanning, Dependency Confusion, Trojan Source, Open Source and Proprietary Checks (total ca. 1000 checks)
Scanmycode CE (Community Edition) logo

Open DevSecOps Orchestration Toolchain


License

Released under AGPL-3.0 by @tcosolutions.

Overview

Betterscan is a state-of-the-art orchestration toolchain designed to scan your source code and Infrastructure as Code (IaC) for security and compliance risks.


Open and Developer Friendly DevSecOps Toolchain

Betterscan uses many tools for Code, Cloud, secrets. All the best Tools, researched, setup, ran together, unified and de-duplicated results, so you don't have to do it. Added our own checkers also. Continuous Security. Fit for purpose and results.


Debian Base Image

Docker images includes software from the Debian GNU/Linux distribution. Debian is made available under various open-source licenses. See below for details:


Additional Software Licenses

Docker images includes software licensed under various licenses. The full license texts can be found in the image at /srv/betterscan/LICENSE.

Quickstart


2 Options Available:


1. Binary Runtime

Scripts used checkmate CLI binary (python-based)

  • --backend: Specifies the backend type.
    • Choices: "sql" (default), "sqlite".
  • --backend-opts: Provides backend-specific options, such as the connection string for an SQL database or file path for SQLite.
  • --path: Specifies the path to create the new project. Defaults to the current working directory if not specified.
  • --pk: Sets the primary key for the project. If not provided, a UUID is generated.

Example Usage:

checkmate --backend sql --backend-opts "postgresql://user:password@localhost/mydatabase" --path "/path/to/project" --pk "custom_pk"

CLI Output

Run in command prompt in your Git repository folder:

sh <(curl https://raw.githubusercontent.com/tcosolutions/betterscan/main/cli.sh)
  • The result will be in the current directory in "report.html", "report.json" and "report.sarif" file

2. Platform with Web Interface and Workers (DEPRECATED due to unupdated dependencies)


Docker

If you need CI/CD and Web Interface, you need Docker-Compose installed as well, if you don't already have it.

Run in command prompt:

git clone [email protected]:tcosolutions/betterscan.git
cd betterscan/dockerhub
docker compose up

Kubernetes / Minikube

Installable via helm chart.

Helm Chart for Betterscan.io DevSecOps Toolchain platform Please install under name betterscan

helm repo add betterscan-repo https://marcinguy.github.io/betterscan-chart
helm repo update
helm install betterscan betterscan-repo/betterscan

Open up the Browser to: http://localhost:5000 Sign up locally (and login in when needed)





> Visit Scanmycode CE (Community Edition) Website <
Best Search
Popular Tags