41 results found Sort:
- Filter by Primary Language:
- Python (10)
- Go (9)
- C# (5)
- Java (5)
- Rust (3)
- JavaScript (2)
- XSLT (1)
- Kotlin (1)
- PHP (1)
- Shell (1)
- +
A vulnerability scanner for container images and filesystems
Created
2020-05-26
1,492 commits to main branch, last one 18 hours ago
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Created
2020-05-07
2,473 commits to main branch, last one 22 hours ago
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Created
2013-07-16
5,577 commits to master branch, last one 23 hours ago
:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...
Created
2015-07-01
11,324 commits to develop branch, last one 6 days ago
A suite of tools to automate software compliance checks.
Created
2017-10-19
16,730 commits to main branch, last one 21 hours ago
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the ...
Created
2021-12-30
990 commits to master branch, last one about a month ago
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container ima...
Created
2020-01-28
386 commits to master branch, last one 5 days ago
A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
Created
2017-11-11
262 commits to master branch, last one 6 days ago
The Panthera(P.)uncia of Cybersecurity - Official CLI utility for Subdomain Center & Exploit Observer.
Created
2023-09-10
38 commits to master branch, last one about a month ago
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission t...
Created
2019-12-30
1,408 commits to master branch, last one 2 days ago
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
Created
2022-07-08
90 commits to main branch, last one 6 days ago
🎁 wraps all package managers with a unifying CLI
Created
2016-08-17
4,312 commits to main branch, last one 20 hours ago
Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.
Created
2023-03-06
1,041 commits to main branch, last one 20 hours ago
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and V...
Created
2017-05-29
1,039 commits to master branch, last one 3 days ago
BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generator for binaries.
Created
2023-01-21
239 commits to main branch, last one 12 days ago
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Created
2020-10-22
413 commits to main branch, last one 2 months ago
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Created
2017-06-04
754 commits to master branch, last one 9 days ago
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
Created
2018-11-15
675 commits to main branch, last one 11 days ago
SBOM quality score - Quality metrics for your sboms
Created
2023-01-31
560 commits to main branch, last one 2 days ago
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Created
2018-10-02
944 commits to master branch, last one 3 days ago
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
Created
2020-07-31
122 commits to master branch, last one 7 days ago
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
Created
2018-05-30
569 commits to master branch, last one 7 days ago
A suite of utilities to help with software supply chain challenges on nix targets
Created
2022-12-08
269 commits to main branch, last one 3 days ago
creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
Created
2017-06-04
516 commits to master branch, last one 26 days ago
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...
Created
2020-09-10
1,042 commits to main branch, last one 7 days ago
Enrich SBOMs with data from third party services
Created
2023-04-19
138 commits to main branch, last one 27 days ago
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
Created
2019-05-21
1,195 commits to main branch, last one 13 days ago
Utility that provides an API platform for validating, querying and managing BOM data
Created
2023-01-10
291 commits to main branch, last one 2 days ago
CycloneDX SBOM Model and Utils for Creating and Validating BOMs
Created
2018-05-30
1,331 commits to master branch, last one 11 hours ago
A BOM repository server for distributing CycloneDX BOMs
Created
2021-05-27
231 commits to main branch, last one 2 years ago