-
-
Notifications
You must be signed in to change notification settings - Fork 1.5k
Expand file tree
/
Copy pathcognium.yml
More file actions
27 lines (27 loc) · 832 Bytes
/
cognium.yml
File metadata and controls
27 lines (27 loc) · 832 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
name: cognium
categories:
- linter
tags:
- java
- javascript
- typescript
- python
- rust
- shell
- security
license: MIT
types:
- cli
source: https://github.com/cogniumhq/cognium
homepage: https://cognium.dev
description: >-
Semantic taint-tracking SAST engine with a 36-pass analysis pipeline covering
security (SQL injection, XSS, SSRF, command injection, path traversal, and 15
more CWEs), reliability, performance, and maintainability. Supports Java,
JavaScript, TypeScript, Python, Rust, and Bash. Outputs text, JSON, and SARIF
2.1.0. OWASP Benchmark: 100% TPR, 0% FPR across 1415 test cases.
resources:
- title: OWASP Benchmark Results
url: https://github.com/cogniumhq/cognium#benchmark-results
- title: GitHub Action
url: https://github.com/marketplace/actions/cognium-security-scan