OWASP / packmanLinks
A documentation and tracking project with the goal of making package management systems more secure.
☆50Updated 4 years ago
Alternatives and similar repositories for packman
Users that are interested in packman are comparing it to the libraries listed below
Sorting:
- ☆20Updated 6 years ago
- Security scanning & static analysis tool☆94Updated 7 months ago
- ☆39Updated 4 years ago
- A community collection of security reviews of open source software components.☆94Updated last year
- 💅🏽 analyzes your github actions☆70Updated 3 weeks ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 9 months ago
- DEPRECATED - web security checklist for Firefox Services☆74Updated 4 years ago
- A specification for signing methods and formats used by Secure Systems Lab projects.☆78Updated 8 months ago
- ☆63Updated 2 years ago
- Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …☆41Updated 4 years ago
- Listo. Use questionnaires and checklists to make it easy to do the right thing, regarding the software you build.☆28Updated 2 years ago
- An SBOM query language and associated utilities☆54Updated last year
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated last year
- Container Security Verification Standard☆58Updated 5 years ago
- Software Component Verification Standard (SCVS)☆147Updated 2 months ago
- Technical Advisory Council☆124Updated this week
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 4 months ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆50Updated last week
- TSLint rules for Angular☆18Updated 6 years ago
- ☆100Updated 8 months ago
- Securing Alice's, Bob's and Carl's software supply chain using in-toto☆93Updated last week
- A tool to check the security settings of Github Organizations.☆71Updated last year
- Externalize Java application access to protected resources as log messages.☆41Updated last month
- Slides from presentations I give!☆25Updated last month
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- GCP CSPM using Google Sheets☆36Updated 2 months ago
- Supply Chain Integrity Model☆105Updated last year
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- Pin designs for security related items☆37Updated last year
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆74Updated 3 years ago