ForAllSecure / mapi-actionLinks
π€ Run a Mayhem for API scan in GitHub Actions
β24Updated 9 months ago
Alternatives and similar repositories for mapi-action
Users that are interested in mapi-action are comparing it to the libraries listed below
Sorting:
- This project is deprecated. Use https://github.com/returntocorp/semgrep insteadβ73Updated last year
- Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scannersβ12Updated last week
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and discβ¦β127Updated 7 months ago
- Open Source Vulnerability schema.β206Updated last week
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulnerβ¦β52Updated this week
- A place to systematically store software bill of materials (SBOM) documents.β46Updated 2 years ago
- Golang tool to pull and summarize NPM license infoβ13Updated 2 years ago
- β53Updated this week
- A CVRF CSAF Converter, taking care about OASIS specification.β10Updated 3 months ago
- Audit C/C++ projects (make, cmake, command line, etc.)β27Updated 3 years ago
- Securing Alice's, Bob's and Carl's software supply chain using in-totoβ94Updated 3 weeks ago
- Semgrep extension for Visual Studio Codeβ66Updated this week
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and discβ¦β137Updated last year
- Docker Secure Computing Profile Generatorβ48Updated 3 years ago
- Low-effort reachability analysis for third-party code vulnerabilities.β21Updated 2 years ago
- Scan pypi for typosquattingβ38Updated 2 years ago
- Report missing advisories and corrections on OSS Indexβ17Updated 2 years ago
- Proof-of-concept SLSA provenance generator for GitHub Actionsβ100Updated 2 years ago
- β101Updated 11 months ago
- Format agnostic SBOM toolingβ116Updated 2 weeks ago
- β14Updated this week
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.β119Updated last year
- Examples of SPDX files for software combinationsβ135Updated 2 months ago
- A community collection of security reviews of open source software components.β95Updated last year
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and oβ¦β78Updated last month
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by hβ¦β195Updated last month
- Python implementation of Tinkβ68Updated 2 weeks ago
- Technical Advisory Councilβ129Updated 2 weeks ago
- A specification for signing methods and formats used by Secure Systems Lab projects.β83Updated 11 months ago
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & dataβ65Updated last year