Alternatives and similar repositories for osv-detector

Users that are interested in osv-detector are comparing it to the libraries listed below

• devops-kung-fu / bomber
  Scans Software Bill of Materials (SBOMs) for security vulnerabilities
  ☆576Updated 4 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆183Updated this week
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆125Updated 6 months ago
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆70Updated last month
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆60Updated 2 years ago
• ossf / malicious-packages
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆324Updated this week
• xeol-io / xeol
  A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
  ☆404Updated last week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆206Updated this week
• anchore / chronicle
  a fast changelog generator sourced from PRs and Issues
  ☆62Updated last week
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆28Updated 2 weeks ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆231Updated 11 months ago
• Legit-Labs / legitify
  Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
  ☆815Updated 4 months ago
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆101Updated this week
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆407Updated this week
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆117Updated this week
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆236Updated this week
• bureado / awesome-software-supply-chain-security
  A compilation of resources in the software supply chain security domain, with emphasis on open source
  ☆327Updated 2 years ago
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆108Updated 2 months ago
• vendorsec / mvsp
  Minimum Viable Secure Product mvsp.dev
  ☆198Updated 7 months ago
• MaibornWolff / SecObserve
  SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…
  ☆148Updated this week
• chainloop-dev / chainloop
  Evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more
  ☆478Updated this week
• interlynk-io / sbomqs
  SBOM Assess - Evaluate SBOM quality and compliance
  ☆221Updated 2 weeks ago
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆252Updated 2 years ago
• ossf / security-baseline
  ☆100Updated this week
• philips-software / SPDXMerge
  SPDX Merge tool
  ☆46Updated 3 months ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆308Updated last week
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆19Updated 7 months ago
• awesomeSBOM / awesome-sbom
  A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles
  ☆535Updated 2 months ago
• openvex / spec
  OpenVEX Specification
  ☆156Updated 2 months ago
• dbsystel / trivy-vulnerability-explorer
  Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive d…
  ☆143Updated this week