OtherDevOpsGene / zap-sonar-pluginLinks
Integrates OWASP Zed Attack Proxy reports into SonarQube
☆72Updated 2 months ago
Alternatives and similar repositories for zap-sonar-plugin
Users that are interested in zap-sonar-plugin are comparing it to the libraries listed below
Sorting:
- OWASP SonarQube Project☆110Updated 6 years ago
- Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).☆138Updated this week
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆210Updated 2 years ago
- The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.☆60Updated last year
- Zap baseline scanner in Docker with authentication☆103Updated last year
- Demo - how to easily build security testing for Web App, using Zap and Glue☆60Updated 4 years ago
- Checkmarx Scan and Result Orchestration☆101Updated 2 weeks ago
- Container Security Verification Standard☆58Updated 6 years ago
- The DevSecOps toolset for REST APIs☆276Updated 2 years ago
- DevSecOps Toolchain☆111Updated 7 years ago
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…☆110Updated last year
- Integrates Xanitizer results into SonarQube☆21Updated 4 years ago
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆71Updated 2 months ago
- Integrates Dependency-Check reports into SonarQube☆668Updated last week
- Fortify SonarQube Plugin☆22Updated 4 years ago
- Simple command-line client to the Anchore Engine service☆114Updated last year
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆149Updated 5 years ago
- Deprecated; please use fcli instead☆27Updated last month
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆47Updated 9 months ago
- A simple tool for interacting with OWASP ZAP from the commandline.☆244Updated 2 years ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆47Updated 2 months ago
- Code Pulse is a real-time code coverage tool for penetration testing activities☆122Updated 2 years ago
- Ready to use images of Zap and Glue, especially for CI integration.☆35Updated 6 years ago
- BDD Automated Security Tests for Web Applications☆567Updated 2 years ago
- Dockerized version of Nexus IQ Server☆26Updated 3 weeks ago
- Security scanning & static analysis tool☆94Updated 11 months ago
- ☆21Updated 3 years ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆43Updated last year
- ☆59Updated 8 months ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Updated 7 years ago