CycloneDX / cyclonedx-gradle-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
☆166Updated this week
Alternatives and similar repositories for cyclonedx-gradle-plugin:
Users that are interested in cyclonedx-gradle-plugin are comparing it to the libraries listed below
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆305Updated last month
- Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Lifecycle.☆77Updated 3 weeks ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆84Updated this week
- ☆113Updated 7 months ago
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆66Updated this week
- The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for …☆364Updated last week
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆327Updated 2 months ago
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆17Updated this week
- Experimental JUnit Jupiter Extension for writing integration tests for Maven plugins/Maven extensions/Maven Core☆89Updated 2 weeks ago
- Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository☆107Updated this week
- OpenRewrite's Gradle plugin.☆68Updated this week
- ☆181Updated this week
- java clients for sigstore☆50Updated this week
- Gradle plugin to improve Dependency Conflict Detection and Resolution☆54Updated this week
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆62Updated last week
- Gradle Plugin for Extracting Dependency Information to send to GitHub☆85Updated this week
- A collection of Gradle plugins☆138Updated 3 weeks ago
- Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…☆133Updated this week
- A plugin for generating reports about the licenses of third party software using Gradle☆337Updated 5 months ago
- Maven plugin to download and collect license files from project dependencies.☆109Updated 2 weeks ago
- SonarQube Scanner for Gradle☆192Updated 3 weeks ago
- Gradle plugin for PIT Mutation Testing☆223Updated this week
- Instrument your Gradle build with OpenTelemetry observability to find and eliminate bottlenecks in your build☆35Updated this week
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆68Updated last month
- Java/JVM implementation of the package url spec☆24Updated 7 months ago
- Infer a project's version from your Git repository.☆191Updated 2 months ago
- GitHub Action for submitting Maven dependencies☆48Updated 4 months ago
- JUnit 5 test framework support for Pitest☆73Updated last year
- SigTest is the tool for checking incompatibilities between different versions of the same API.☆10Updated 2 years ago
- This project contains a Testcontainers implementation for a plain git server based on the Docker image rockstorm/git-server☆33Updated this week