DataDog / guarddogLinks
GuardDog is a CLI tool to Identify malicious PyPI and npm packages
☆782Updated this week
Alternatives and similar repositories for guarddog
Users that are interested in guarddog are comparing it to the libraries listed below
Sorting:
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆324Updated this week
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆216Updated this week
- Open Source Package Analysis☆836Updated 3 months ago
- A repo to conduct vulnerability enrichment.☆667Updated this week
- boostsecurityio/poutine☆308Updated last week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆576Updated 4 months ago
- CI/CD Security Analyzer☆664Updated 5 months ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆534Updated 5 months ago
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆348Updated last week
- Gram is Klarna's own threat model diagramming tool☆322Updated last week
- Advisory database for Python packages published on pypi.org☆301Updated last week
- #supply #chain #attack #detection☆534Updated this week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆813Updated 4 months ago
- Awesome secure by default libraries to help you eliminate bug classes!☆698Updated 3 months ago
- OSV-SCALIBR: A library for Software Composition Analysis☆412Updated this week
- Global Security Database☆319Updated last year
- A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…☆364Updated 7 months ago
- A tool for preventing the installation of malicious npm and PyPI packages☆153Updated this week
- ☆370Updated last year
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆209Updated this week
- Galah: An LLM-powered web honeypot.☆566Updated 2 weeks ago
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆349Updated 2 months ago
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆339Updated last month
- Open Source Vulnerability schema.☆206Updated this week
- Packj stops Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in y…☆666Updated last year
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆316Updated last week
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆478Updated last month
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆135Updated last year
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆658Updated 3 weeks ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆152Updated 8 months ago