Alternatives and similar repositories for tools-image

Users that are interested in tools-image are comparing it to the libraries listed below

• csaf-tools / CVRF-CSAF-Converter
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Updated 3 months ago
• swinslow / npm-spdx
  Golang tool to pull and summarize NPM license info
  ☆13Updated 2 years ago
• vwt-digital / sec-helpers
  Collection of dynamic security related helpers
  ☆16Updated 2 years ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• anchore / grype-db
  ☆54Updated last week
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆71Updated 8 months ago
• CycloneDX / gh-python-generate-sbom
  GitHub action to generate a CycloneDX SBOM for Python
  ☆14Updated 8 months ago
• sonatype-nexus-community / ahab
  ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
  ☆68Updated last year
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆28Updated 2 weeks ago
• secvisogram / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆39Updated last week
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆102Updated last week
• sbomtools / apt2sbom
  apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information
  ☆22Updated 3 years ago
• ossf / ossf-landscape
  ☆30Updated this week
• darkbitio / tools
  Darkbit Cloud Security Tools
  ☆25Updated 4 years ago
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆102Updated this week
• lizrice / container-security
  Resources for the O'Reilly Container Security book
  ☆104Updated last month
• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆22Updated last week
• OVAL-Community / OVAL
  Official repository for the Open Vulnerability and Assessment Language
  ☆77Updated 2 weeks ago
• kaakaww / hawkscan-examples
  📖 A repo of configuration examples for StackHawk's Hawkscan!
  ☆17Updated last week
• interlynk-io / sbomex
  SBOM Explorer - Discover and pull public SBOMs
  ☆20Updated 3 months ago
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆198Updated 2 weeks ago
• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆71Updated last year
• ComplianceAsCode / auditree-arboretum
  The Auditree common fetchers, checks and harvest reports library.
  ☆20Updated last year
• artis3n / course-vault-github-oidc
  Take this course to learn how to create fine-grained, least-privilege HashiCorp Vault roles for GitHub Action workflows using GitHub OIDC…
  ☆15Updated 2 weeks ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• ossf / great-mfa-project
  The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute …
  ☆54Updated 3 years ago
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆128Updated 8 months ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆52Updated 2 months ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆120Updated last month