Open-source security scanner and configuration auditor for Vercel. 130+ checks across 20 categories. Finds leaked tokens, WAF gaps, NEXT_PUBLIC_ secret leaks, subdomain takeover risks, Next.js CVEs, and more. Single binary, zero dependencies.

SENTINEL - Autonomous Cloud Security Posture Remediation

Multi-SaaS OAuth grant posture scanner (Google Workspace + GitHub + Slack) with vendored IOC matching, ConnectRPC API, and ko-built static images

Local-first security posture scanner for OpenClaw agents. 69 rules. Zero telemetry.

Noname Security (acquired by Akamai in 2024) is an API security platform that provides complete API discovery, posture management, runtime protection, and active testing capabilities.

All the features and services realized by the Posture & Prevention bounded context relative to the application domain, including specification library (e.g api), components implementation (e.g software implementation packages) and deployable systems (e.g operable component on infrastructure types).

Penetration testing for identity policies — dynamically simulate Okta authentication policies under risky conditions, detect misconfigurations, and score security posture with actionable remediation guidance

Valence Security is the leader in SaaS and AI Security, built for the agentic era.

Security control plane for OpenClaw deployments (posture, remediation, monitoring, audit trail).

Akamai API Security (formerly Noname Security) provides comprehensive API discovery, posture management, and threat protection for organizations across cloud, on-premises, and hybrid environments.

PosturePal is an open-source wearable device that uses sensor-based monitoring to detect poor posture and deliver real-time feedback. When unhealthy posture is sustained, the device alerts the user to encourage correction. A companion app provides customization options, data tracking, and control over device behavior.

Check Point CloudGuard is a Cloud Native Application Protection Platform (CNAPP) that delivers cloud security posture management (CSPM), cloud workload protection (CWPP), code security, network security, and intelligence/CDR capabilities across AWS, Azure, GCP, Alibaba, Oracle, Kubernetes, and on-premises environments.