bearer

Welcome to the Bearer documentation. Bearer is a static application security testing (SAST) tool that scans your source code and analyzes your data flows to discover, filter and prioritize security risks and vulnerabilities leading to sensitive data exposures (PII, PHI, PD). We provides built-in rules against a common set of security risks and vulnerabilities, known as OWASP Top 10. Leakage of sensitive data through cookies, internal loggers, third-party logging services, and into analytics environments. Usage of weak encryption libraries or misusage of encryption algorithms. Unencrypted incoming and outgoing communication (HTTP, FTP, SMTP) of sensitive information. Non-filtered user input. Hard-coded secrets and tokens. Bearer currently supports JavaScript and Ruby stacks, more will follow. Bearer's scanners and reports are your path to analyzing security risks and vulnerabilities in your application.

Features

Non-filtered user input
Hard-coded secrets and tokens
Unencrypted incoming and outgoing communication (HTTP, FTP, SMTP) of sensitive information
Usage of weak encryption libraries or misusage of encryption algorithms
Leakage of sensitive data through cookies, internal loggers, third-party logging services, and into analytics environments
Bearer currently supports JavaScript and Ruby stacks

Project Samples

Project Activity

See All Activity >

License

MIT License

Follow bearer

bearer Web Site

User Reviews

Be the first to post a review of bearer!

Additional Project Details

Programming Language

Related Categories

C Static Code Analysis Tool

Registered

2023-03-31

Similar Business Software

Appknox

Push world-class mobile apps faster into the market without compromising on security Build and deploy world-class mobile apps for your organizations at scale and leave your mobile app security to us. Highest Rated Security solution on Gartner We rejoice when the Appknox system secures our...

See Software
OpenText Static Application Security Testing

OpenText Static Application Security Testing (SAST) identifies and remediates security vulnerabilities in source code early in the software development lifecycle. It supports extensive language coverage and integrates seamlessly with popular CI/CD tools such as Jenkins, Azure DevOps, Jira, and...

See Software
PT Application Inspector

PT Application Inspector is the only source code analyzer providing high-quality analysis and convenient tools to automatically confirm vulnerabilities — significantly speeding up the work with reports and simplifying teamwork between security specialists and developers. The combination of...

See Software
Snappytick

Snappy Tick Source Edition (SAST) is a source code review tool, it helps to identify the Vulnerability in Source code. We provide - Static Code Analysis tools and Source Code Review tools. Consider an In-line auditing approaches will identify the largest amount of most significant Security...

See Software
Kiuwan Code Security

Security Solutions For Your DevOps Process. Automatically scan your code to identify and remediate vulnerabilities. Compliant with the most stringent security standards, such as OWASP and CWE, Kiuwan Code Security covers all important languages and integrates with leading DevOps...

See Software
GitHub Advanced Security

With AI-powered remediation, static analysis, secret scanning, and software composition analysis, GitHub Advanced Security helps developers and security teams work together to eliminate security debt and keep new vulnerabilities out of code. Code scanning with Copilot Autofix detects...

See Software

Report inappropriate content

bearer

Code security scanning tool (SAST) to discover security risks

Get an email when there's a new version of bearer

Features

Project Samples

Project Activity

Categories

License

Follow bearer

User Reviews

Additional Project Details

Programming Language

Related Categories

Registered