CycloneDX / cyclonedx-gradle-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
☆155Updated this week
Related projects: ⓘ
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆287Updated last week
- Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Nexus IQ Server.☆75Updated last week
- ☆110Updated 3 months ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆80Updated this week
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆14Updated this week
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆297Updated this week
- The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for …☆360Updated 2 weeks ago
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆59Updated this week
- Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…☆110Updated 3 weeks ago
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆61Updated this week
- java clients for sigstore☆37Updated last week
- Gradle Plugin for Extracting Dependency Information to send to GitHub☆80Updated this week
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆61Updated 8 months ago
- Calculates dependencies for a Gradle build-target and submits the list to the Dependency Submission API☆80Updated 7 months ago
- ☆178Updated this week
- Gradle plugin for PIT Mutation Testing☆214Updated 2 weeks ago
- A plugin for generating reports about the licenses of third party software using Gradle☆321Updated last month
- OpenRewrite's Gradle plugin.☆60Updated last week
- A collection of Gradle plugins☆138Updated 8 months ago
- SonarQube Scanner for Gradle☆186Updated 3 weeks ago
- OpenRewrite's Maven plugin.☆137Updated this week
- Java library for parsing report files from static code analysis.☆145Updated 2 weeks ago
- Gradle plugin to improve Dependency Conflict Detection and Resolution☆47Updated this week
- Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository☆99Updated this week
- Frontend UI for Dependency-Track☆100Updated last week
- ☆29Updated this week
- Keep Gradle Wrapper up-to-date with this action.☆48Updated this week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆359Updated 2 weeks ago
- Java/JVM implementation of the package url spec☆22Updated 3 months ago
- SonarQube Licensecheck Plugin☆156Updated this week