OtherDevOpsGene / zap-sonar-pluginLinks
Integrates OWASP Zed Attack Proxy reports into SonarQube
☆72Updated last month
Alternatives and similar repositories for zap-sonar-plugin
Users that are interested in zap-sonar-plugin are comparing it to the libraries listed below
Sorting:
- OWASP SonarQube Project☆110Updated 6 years ago
- Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).☆138Updated 3 weeks ago
- The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.☆60Updated 10 months ago
- Zap baseline scanner in Docker with authentication☆103Updated last year
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆210Updated 2 years ago
- Container Security Verification Standard☆58Updated 6 years ago
- Demo - how to easily build security testing for Web App, using Zap and Glue☆60Updated 4 years ago
- Deprecated; please use fcli instead☆26Updated 2 weeks ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆46Updated last month
- Code Pulse is a real-time code coverage tool for penetration testing activities☆122Updated 2 years ago
- Integrates Xanitizer results into SonarQube☆21Updated 4 years ago
- DevSecOps Toolchain☆113Updated 7 years ago
- Integrates Dependency-Check reports into SonarQube☆659Updated this week
- This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.☆43Updated last month
- ZAP Management Scripts☆23Updated last week
- A simple tool for interacting with OWASP ZAP from the commandline.☆242Updated 2 years ago
- Fortify SonarQube Plugin☆22Updated 4 years ago
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…☆110Updated last year
- A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.☆107Updated 9 months ago
- Checkmarx Scan and Result Orchestration☆101Updated last month
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Updated 7 years ago
- Simple command-line client to the Anchore Engine service☆114Updated last year
- The DevSecOps toolset for REST APIs☆274Updated 2 years ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆149Updated 4 years ago
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆46Updated 8 months ago
- Ready to use images of Zap and Glue, especially for CI integration.☆35Updated 6 years ago
- OWASP Dependency Track API client for intergration into CI/CD pipeline☆54Updated last year
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆42Updated last year
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- AppSecPipeline Specification for DevOps automation.☆40Updated 2 years ago