A documentation and tracking project with the goal of making package management systems more secure.
☆51Mar 5, 2021Updated 5 years ago
Alternatives and similar repositories for packman
Users that are interested in packman are comparing it to the libraries listed below
Sorting:
- ☆14Nov 13, 2023Updated 2 years ago
- Creates CycloneDX Software Bill-of-Materials (SBOM) from Objective-C and Swift projects that use CocoaPods.☆24Jul 6, 2025Updated 8 months ago
- Public website cyclonedx.org☆12Dec 20, 2024Updated last year
- Software Component Verification Standard (SCVS)☆157Apr 1, 2025Updated 11 months ago
- Measure release insights and recommendations for open-source dependencies. Note: this project is archived.☆10Jan 3, 2023Updated 3 years ago
- Examples of using Snyk's SBOM APIs.☆16Sep 29, 2022Updated 3 years ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆53Mar 4, 2026Updated 2 weeks ago
- Threat Modeling Manifesto☆30Jul 18, 2024Updated last year
- Report missing advisories and corrections on OSS Index☆17Jan 19, 2023Updated 3 years ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆23Jan 19, 2025Updated last year
- OWASP Findings Format☆19Mar 4, 2021Updated 5 years ago
- OWASP Foundation web repository☆35Feb 25, 2026Updated 3 weeks ago
- Externalize Java application access to protected resources as log messages.☆43Mar 7, 2026Updated last week
- ☆23Oct 26, 2021Updated 4 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Jan 16, 2024Updated 2 years ago
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆487Updated this week
- ☆41Jul 9, 2020Updated 5 years ago
- GitHub action to generate a CycloneDX SBOM for Node.js☆22Jul 11, 2025Updated 8 months ago
- ☆102Sep 27, 2024Updated last year
- OWASP Foundation Web Respository☆23Feb 27, 2026Updated 2 weeks ago
- GitHub Action adding a comment with information about new npm dependencies detected in a pull request☆17Mar 30, 2024Updated last year
- A standard API specification for exchanging supply chain artifacts and intelligence☆103Mar 13, 2026Updated last week
- a repository for documenting and coordinating the foundation's security collaboration space☆41Mar 13, 2026Updated last week
- A Rust crate for reading LDtk project files☆12Apr 26, 2021Updated 4 years ago
- Swag for the OWASP projects and chapters☆44Jul 18, 2025Updated 8 months ago
- OpenSSF Project Template☆23Nov 29, 2023Updated 2 years ago
- SLSA implementation of Community Specification governance☆24Jan 15, 2026Updated 2 months ago
- Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team☆33Feb 2, 2026Updated last month
- Inject Frida-Gadget into a local process☆26Jul 5, 2019Updated 6 years ago
- OWASP Foundation Web Respository☆28Dec 22, 2025Updated 2 months ago
- Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …☆199Jan 15, 2026Updated 2 months ago
- Erlang Sandboxing for Reliable and Scalable Concurrency Testing☆25Nov 28, 2019Updated 6 years ago
- Generate Software Bill of Materials for R Things☆19Feb 9, 2024Updated 2 years ago
- Erlang app for testing authoritative DNS servers for compliance.☆28Updated this week
- Container image builder based on Gentoo Linux☆15Nov 17, 2020Updated 5 years ago
- Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.☆30Mar 9, 2026Updated last week
- This projects provides a logger and a connected harlem shake js.☆20May 17, 2024Updated last year
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Apr 4, 2023Updated 2 years ago
- ☆16Mar 13, 2026Updated last week