Ericsson / secure_coding_one_stop_shop_for_python
Secure Coding in Python
☆19Updated last month
Related projects ⓘ
Alternatives and complementary repositories for secure_coding_one_stop_shop_for_python
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆55Updated 2 months ago
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆33Updated 3 weeks ago
- A community collection of security reviews of open source software components.☆92Updated 8 months ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆71Updated 3 weeks ago
- OWASP Project Developer Guide - Document and Project Web pages☆88Updated this week
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆35Updated last week
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆71Updated 3 weeks ago
- Exploit Prediction Scoring System (EPSS)☆23Updated 2 years ago
- ☆80Updated this week
- Fast and simple way to check any HTTP Headers☆45Updated last year
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers…☆98Updated this week
- A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs☆52Updated last year
- Python Faker provider for security related data☆36Updated 3 months ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆119Updated 5 months ago
- OpenSSF Endusers Working Group☆28Updated 8 months ago
- Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.☆84Updated 2 weeks ago
- CVSS v4.0 calculator☆25Updated 3 months ago
- Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities datab…☆17Updated 2 years ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆126Updated last year
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆36Updated 3 years ago
- An open-source collection of API key rotation tutorials.☆60Updated 2 months ago
- A Python library and command line interface for CVE Services.☆58Updated 3 weeks ago
- Potential WG on Artificial Intelligence and Machine Learning (AI/ML)☆53Updated 3 weeks ago
- CVE database☆22Updated 4 years ago
- Feed parsing for language package manager updates☆71Updated last week
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆180Updated last week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆33Updated last month
- Semgrep extension for Visual Studio Code☆54Updated this week
- A parser for Python dependency files☆61Updated last week
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated 8 months ago