Secure SDLC Pipeline - CLI for security scanning
Project description
OzySDLC
Secure SDLC Pipeline — Scan your code for security vulnerabilities in seconds.
Fast, simple and practical DevSecOps scanning from your terminal.
🔐 What it does
OzySDLC runs automated security scans on your project:
- 🔐 Secrets — Detect API keys, tokens, passwords
- 📦 Dependencies — Find vulnerable packages
- 🧪 Code — Static analysis for common security issues
🚀 Quick Start
pip install ozy-sdlc
ozy run .
📦 Installation
From PyPI (recommended)
pip install ozy-sdlc
From source
git clone https://github.com/ozysdlc/ozysdlc.git
cd ozysdlc
pip install -e .
Arch Linux
# Using pipx (recommended)
pipx install ozy-sdlc
# Or with aur (if available)
yay -S python-ozysdlc
Troubleshooting
Error: "externally-managed-environment"
# Use pipx (recommended)
pipx install ozy-sdlc
# Or create a virtual environment
python -m venv venv
source venv/bin/activate
pip install ozy-sdlc
⚙️ Usage
# Scan current directory
ozy run .
# Scan specific path
ozy run /path/to/project
# Output JSON for CI/CD
ozy run . --json
# Save to file
ozy run . --output results.json
# Skip specific scanners (--no-code recommended for large projects)
ozy run . --no-secrets --no-deps --no-code
⚠️ Note on Semgrep
Semgrep can be slow on large projects (>30s).
For faster scans:
ozy run . --no-code
📊 Example Output
🚨 OZYSDLC REPORT
Secrets ❌ 2
Dependencies ⚠️ 5
Code Issues ⚠️ 3
Risk Score: HIGH 🔴
🚦 Exit Codes
| Code | Meaning |
|---|---|
| 0 | No vulnerabilities found (clean) |
| 1 | Vulnerabilities detected |
| 2 | Execution error |
🧰 Requirements
For full functionality:
- gitleaks — Secrets detection
- trivy — Dependency scanning
- semgrep — Static code analysis
OzySDLC still runs if tools are missing (warnings will be shown)
⚙️ Options
--no-secrets Skip secrets scanning
--no-deps Skip dependency scanning
--no-code Skip code analysis
-v, --verbose Show detailed output
--json Output JSON to stdout
--output FILE Write output to file
🎯 Philosophy
Verify every stage. Trust nothing by default.
📄 License
MIT
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file ozy_sdlc-0.1.0.tar.gz.
File metadata
- Download URL: ozy_sdlc-0.1.0.tar.gz
- Upload date:
- Size: 6.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.4
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
dbfc59b70a4aa7c23ceb7dbe3fd5e10820e71a0db4c8eec5d6b4aeff4c9b620f
|
|
| MD5 |
caf1ffea7402ec8f6ce10e8fea4c7cb2
|
|
| BLAKE2b-256 |
85fb6cb618283928c6236c656108b2c3931f4d3d0696aa307de572275435f23e
|
File details
Details for the file ozy_sdlc-0.1.0-py3-none-any.whl.
File metadata
- Download URL: ozy_sdlc-0.1.0-py3-none-any.whl
- Upload date:
- Size: 8.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.4
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
aeee67da798bad08d4c1916abdee6bb3fb1704e982261fbb658981374e79fccc
|
|
| MD5 |
3cec199dcc2ac68401fea288cf7d59c5
|
|
| BLAKE2b-256 |
d920f682ca4b82a00128b152ea28b3850e25d0ce9e6b3730e595015f145defef
|
