Sketchy is a cross-platform security scanner designed to identify potential risks in GitHub repositories, packages, or scripts before installation. It highlights various security concerns, including code execution patterns and credential theft, helping users avoid malicious software. The tool is open-source and encourages users to audit its code and report any malware findings.

SecHub is a free and open-source security platform that provides a central API for testing software with various security tools, enhancing application security throughout the software development lifecycle. It orchestrates multiple security and vulnerability scanners, allowing teams to identify and address potential vulnerabilities in source code, binaries, and web applications efficiently. SecHub offers a streamlined user workflow for scanning and reporting, supporting integrations with CI/CD pipelines and various IDEs through plugins.