deepsec: self-hosted tool for developers and homelabbers
The usual approach to security scanning is manual. You run a static analyzer on your code, like SAST tools. You review pull requests line by line. You audit dependencies with a package scanner. This works. But it misses vulnerabilities that are conte...