MaibornWolff / SecObserveLinks
SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It supports a variety of open source vulnerability scanners and integrates easily into CI/CD pipelines.
☆153Updated this week
Alternatives and similar repositories for SecObserve
Users that are interested in SecObserve are comparing it to the libraries listed below
Sorting:
- ☆82Updated 7 months ago
- Enrich SBOMs with data from third party services☆188Updated this week
- boostsecurityio/poutine☆309Updated last week
- A tool for preventing the installation of malicious npm and PyPI packages☆158Updated last week
- A utility to (re-)import findings and language data into DefectDojo☆43Updated 11 months ago
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆404Updated last week
- A standard API specification for exchanging supply chain artifacts and intelligence☆83Updated last month
- The security workflow engine!☆118Updated this week
- OWASP Kubernetes security and compliance tool [WIP]☆106Updated 2 years ago
- Validate the isolation posture of your container environment.☆297Updated last week
- Utility that provides an API platform for validating, querying and managing BOM data☆118Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆578Updated 4 months ago
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆222Updated last week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆174Updated 4 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆245Updated 4 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆136Updated last year
- Generate a score for your sbom to understand if it will actually be useful.☆232Updated last year
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets��☆815Updated 4 months ago
- ☆103Updated this week
- Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive d…☆144Updated this week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated 3 weeks ago
- Software Supply Chain Security Platform☆348Updated this week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆109Updated 7 months ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆492Updated last week
- A universal SBOM representation in protocol buffers☆297Updated this week
- OWASP Foundation Web Respository☆97Updated 7 months ago
- A full insecure kubernetes application for testing security tools☆89Updated 4 months ago
- Security tool against dependency typosquatting attacks☆53Updated this week
- An open source, cloud-native security to protect everything from build to runtime☆311Updated this week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆175Updated 9 months ago