OtherDevOpsGene / zap-sonar-plugin
Integrates OWASP Zed Attack Proxy reports into SonarQube
☆69Updated last year
Related projects ⓘ
Alternatives and complementary repositories for zap-sonar-plugin
- Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).☆129Updated this week
- OWASP SonarQube Project☆110Updated 5 years ago
- The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.☆58Updated last month
- SonarQube plugin for identifying hardcoded secrets, such as passwords, API keys, AWS credentials, etc..☆100Updated 11 months ago
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆62Updated this week
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆206Updated 2 years ago
- Generates an html report from SonarQube☆89Updated last month
- Zap baseline scanner in Docker with authentication☆104Updated 6 months ago
- Integrates Dependency-Check reports into SonarQube☆602Updated 2 weeks ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆44Updated 2 weeks ago
- Container Security Verification Standard☆57Updated 5 years ago
- This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.☆42Updated last month
- Fortify SonarQube Plugin☆22Updated 3 years ago
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆39Updated 2 weeks ago
- Feed SonarQube with OWASP Zed Attack Proxy (ZAP) reports☆14Updated 4 years ago
- Checkmarx Scan and Result Orchestration☆88Updated this week
- Ready to use images of Zap and Glue, especially for CI integration.☆34Updated 5 years ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 5 months ago
- Github action to run dependency check☆71Updated 3 months ago
- Demo - how to easily build security testing for Web App, using Zap and Glue☆58Updated 3 years ago
- Code Pulse is a real-time code coverage tool for penetration testing activities☆116Updated last year
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…☆107Updated 8 months ago
- A simple tool for interacting with OWASP ZAP from the commandline.☆229Updated last year
- Run CoreOs Clair standalone☆254Updated 4 months ago
- Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ans…☆55Updated 6 years ago
- OWASP Kubernetes Security Testing Guide☆37Updated 2 months ago
- Main repository for the official Dependency-Track Jenkins plugin☆44Updated last month
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆81Updated this week
- Contains scripts for running anchore engine in CI pipelines☆34Updated 2 years ago
- Software Component Verification Standard (SCVS)☆135Updated 7 months ago