Gitxray: Open-Source Security Tool for GitHub Repositories

Gitxray is an open-source security tool developed by Kulkan Security to improve the security of GitHub repositories. It identifies information disclosures, monitors suspicious activities, and tracks repository changes using GitHub’s public REST APIs without requiring an API key. The tool examines contributor profiles for accidental exposures, detects shared or fake contributors, ranks contributors by rejected pull requests, and observes repositories transitioning from private to public or experiencing unusual star growth. Gitxray also collects public email addresses, monitors post-release updates, and identifies anonymous contributors. It can be installed using pip install gitxray. 

https://blog.kulkan.com/gitxray-a-security-x-ray-for-github-repositories-af8322350db4