OWASP/packman external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

OWASP/packman

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/OWASP/packman)

Close

OWASP / packmanView on GitHubMore

• External links
• Readme badge

A documentation and tracking project with the goal of making package management systems more secure.

☆51Mar 5, 2021Updated 5 years ago

Alternatives and similar repositories for packman

Users that are interested in packman are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• jetstack / tally

  View on GitHub
  ☆14Nov 13, 2023Updated 2 years ago
• CycloneDX / cyclonedx.org-archived

  View on GitHub
  Public website cyclonedx.org
  ☆12Dec 20, 2024Updated last year
• OWASP / Software-Component-Verification-Standard

  View on GitHub
  Software Component Verification Standard (SCVS)
  ☆157Apr 1, 2025Updated last year
• IBM / gauge

  View on GitHub
  Measure release insights and recommendations for open-source dependencies. Note: this project is archived.
  ☆10Jan 3, 2023Updated 3 years ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto

  View on GitHub
  Threat Modeling Manifesto
  ☆30Jul 18, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• hyperledger-labs / SParts

  View on GitHub
  The Software Parts (SParts) lab delivers a Sawtooth-based ledger that provides both accountability and access to the open source componen…
  ☆12Feb 20, 2020Updated 6 years ago
• OSSIndex / vulns

  View on GitHub
  Report missing advisories and corrections on OSS Index
  ☆17Jan 19, 2023Updated 3 years ago
• OWASP / off

  View on GitHub
  OWASP Findings Format
  ☆19Mar 4, 2021Updated 5 years ago
• OWASP / www-project-threat-model-library

  View on GitHub
  OWASP Foundation web repository
  ☆36Mar 16, 2026Updated 3 weeks ago
• spoofzu / jvmxray

  View on GitHub
  Externalize Java application access to protected resources as log messages.
  ☆44Mar 30, 2026Updated last week
• mlieberman85 / supply-chain-examples

  View on GitHub
  ☆23Oct 26, 2021Updated 4 years ago
• edgeroute / security-champion-framework

  View on GitHub
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆110Jan 16, 2024Updated 2 years ago
• javixeneize / neo4cyclone

  View on GitHub
  ☆25Sep 17, 2023Updated 2 years ago
• advanced-security / enterprise-security-team

  View on GitHub
  Manage a uniform team of security managers for every organization in your enterprise
  ☆24Apr 1, 2026Updated last week
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• CycloneDX / gh-node-module-generatebom

  View on GitHub
  GitHub action to generate a CycloneDX SBOM for Node.js
  ☆22Jul 11, 2025Updated 8 months ago
• nyph-infosec / daggerboard

  View on GitHub
  ☆102Sep 27, 2024Updated last year
• OWASP / www-project-dependency-track

  View on GitHub
  OWASP Foundation Web Respository
  ☆23Feb 27, 2026Updated last month
• lirantal / github-action-new-dependencies-advisor

  View on GitHub
  GitHub Action adding a comment with information about new npm dependencies detected in a pull request
  ☆17Mar 30, 2024Updated 2 years ago
• CycloneDX / transparency-exchange-api

  View on GitHub
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆106Mar 25, 2026Updated 2 weeks ago
• CycloneDX / cyclonedx-php-library

  View on GitHub
  Functionality and DataModels of OWASP CycloneDX for PHP
  ☆13Mar 21, 2026Updated 2 weeks ago
• mhausenblas / aws-container-security-survey-2020

  View on GitHub
  AWS container security survey 2020
  ☆11Dec 2, 2020Updated 5 years ago
• openjs-foundation / security-wg

  View on GitHub
  a repository for documenting and coordinating the foundation's security collaboration space
  ☆42Mar 24, 2026Updated 2 weeks ago
• slsa-framework / governance

  View on GitHub
  SLSA implementation of Community Specification governance
  ☆25Jan 15, 2026Updated 2 months ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• SBOM-Community / SBOM-Generation

  View on GitHub
  Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team
  ☆34Feb 2, 2026Updated 2 months ago
• OWASP / www-project-integration-standards

  View on GitHub
  OWASP Foundation Web Respository
  ☆28Dec 22, 2025Updated 3 months ago
• sbomify / sbomify

  View on GitHub
  sbomify is a product security artifact hub and a trust center.
  ☆51Apr 2, 2026Updated last week
• psf / psf-tuf-runbook

  View on GitHub
  A runbook for the PSF, for TUF key setup and initial signing operations to bootstrap signing for PyPI.
  ☆16Mar 20, 2026Updated 2 weeks ago
• ossf / wg-supply-chain-integrity

  View on GitHub
  Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …
  ☆203Jan 15, 2026Updated 2 months ago
• secdec / astam-correlator

  View on GitHub
  Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…
  ☆24Dec 16, 2022Updated 3 years ago
• hrbrmstr / sbom

  View on GitHub
  Generate Software Bill of Materials for R Things
  ☆20Feb 9, 2024Updated 2 years ago
• xinhaoyuan / morpheus

  View on GitHub
  Erlang Sandboxing for Reliable and Scalable Concurrency Testing
  ☆25Nov 28, 2019Updated 6 years ago
• ritazh / psp-gatekeeper-policies

  View on GitHub
  ☆32Dec 1, 2019Updated 6 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• augustd / burp-suite-token-fetcher

  View on GitHub
  Burp Extender to add unique form tokens to scanner requests.
  ☆13Nov 5, 2024Updated last year
• digitalernachschub / staves

  View on GitHub
  Container image builder based on Gentoo Linux
  ☆15Nov 17, 2020Updated 5 years ago
• CycloneDX / cyclonedx-webpack-plugin

  View on GitHub
  Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
  ☆30Mar 28, 2026Updated last week
• OWASP / kstg

  View on GitHub
  Kubernetes Security Testing Guide
  ☆26Apr 22, 2024Updated last year
• juice-shop / shake-logger

  View on GitHub
  This projects provides a logger and a connected harlem shake js.
  ☆20Mar 24, 2026Updated 2 weeks ago
• AevaOnline / supply-chain-synthesis

  View on GitHub
  Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.
  ☆33Apr 4, 2023Updated 3 years ago
• lfai / security-and-compliance

  View on GitHub
  ☆16Mar 31, 2026Updated last week