[PR #761] Add VulnHawk - AI-powered security scanner action #8639

Open
opened 2026-05-27 14:05:56 -05:00 by GiteaMirror · 0 comments
Owner

📋 Pull Request Information

Original PR: https://github.com/sdras/awesome-actions/pull/761
Author: @momenbasel
Created: 4/10/2026
Status: 🔄 Open

Base: mainHead: add-vulnhawk-security-scanner


📝 Commits (1)

  • c989c20 Add VulnHawk - AI-powered security scanner action

📊 Changes

1 file changed (+1 additions, -0 deletions)

View changed files

📝 README.md (+1 -0)

📄 Description

Hey! I'd like to add VulnHawk to the list. It's an AI-powered code security scanner I built that works as a GitHub Action.

What makes it different from Semgrep/CodeQL actions is that it uses AI to understand business logic - so it catches things like missing auth checks on one endpoint when 12 others have them, IDOR flaws, and logic bugs that pattern matching can't express.

Key highlights:

  • Zero config - works out of the box, no rules to write
  • Free for Claude Code or Codex CLI subscribers (no API key needed)
  • Also works with Ollama for fully local/private scanning
  • Supports Python, JS/TS, Go, Java, PHP, Ruby
  • Can ingest SARIF from other SAST tools to go deeper on their findings
  • SARIF output integrates with GitHub's Security tab

GitHub: https://github.com/momenbasel/vulnhawk
Marketplace: https://github.com/marketplace/actions/vulnhawk-security-scan

Thanks for maintaining this list!


🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/sdras/awesome-actions/pull/761 **Author:** [@momenbasel](https://github.com/momenbasel) **Created:** 4/10/2026 **Status:** 🔄 Open **Base:** `main` ← **Head:** `add-vulnhawk-security-scanner` --- ### 📝 Commits (1) - [`c989c20`](https://github.com/sdras/awesome-actions/commit/c989c209dc659595634a0ef2e1f00b9377304598) Add VulnHawk - AI-powered security scanner action ### 📊 Changes **1 file changed** (+1 additions, -0 deletions) <details> <summary>View changed files</summary> 📝 `README.md` (+1 -0) </details> ### 📄 Description Hey! I'd like to add VulnHawk to the list. It's an AI-powered code security scanner I built that works as a GitHub Action. What makes it different from Semgrep/CodeQL actions is that it uses AI to understand business logic - so it catches things like missing auth checks on one endpoint when 12 others have them, IDOR flaws, and logic bugs that pattern matching can't express. Key highlights: - Zero config - works out of the box, no rules to write - Free for Claude Code or Codex CLI subscribers (no API key needed) - Also works with Ollama for fully local/private scanning - Supports Python, JS/TS, Go, Java, PHP, Ruby - Can ingest SARIF from other SAST tools to go deeper on their findings - SARIF output integrates with GitHub's Security tab GitHub: https://github.com/momenbasel/vulnhawk Marketplace: https://github.com/marketplace/actions/vulnhawk-security-scan Thanks for maintaining this list! --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
GiteaMirror added the pull-request label 2026-05-27 14:05:56 -05:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/awesome-actions#8639