RIGS-IT / sonar-xanitizer
Integrates Xanitizer results into SonarQube
☆21Updated 3 years ago
Alternatives and similar repositories for sonar-xanitizer:
Users that are interested in sonar-xanitizer are comparing it to the libraries listed below
- Identify vulnerable libraries in Maven dependencies☆46Updated 2 years ago
- Jenkins Plugin from Contrast Security☆13Updated 7 months ago
- Maven plugin for integrating with HCL AppScan Source☆9Updated last year
- The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.☆58Updated 5 months ago
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 4 years ago
- ZAP Management Scripts☆23Updated this week
- Open Security Summit 2019☆25Updated 4 years ago
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆44Updated 3 months ago
- Custom security ruleset for the popular Java static analysis tool PMD.☆61Updated 9 years ago
- The SonarQube plugin for jQAssistant☆12Updated last week
- CVE database☆22Updated 4 years ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆44Updated 3 months ago
- A Java library for programmatically calculating OWASP Risk Rating scores☆18Updated last year
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- OWASP SonarQube Project☆110Updated 5 years ago
- Artwork for all official ZAP swag - posters, stickers, t-shirts etc☆14Updated last year
- Integrates OWASP Zed Attack Proxy reports into SonarQube☆70Updated last year
- OWASP Security Logging library for Java☆116Updated last year
- The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in productio…☆21Updated 9 years ago
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayBackend pro…☆15Updated 5 months ago
- Evaluation Framework for Dependency Analysis (EFDA)☆43Updated 2 years ago
- Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).☆134Updated last week
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated 10 months ago
- Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ans…☆55Updated 6 years ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 9 months ago
- Nexus Platform Plugin for Jenkins☆30Updated 9 months ago
- ☆20Updated 6 years ago
- This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.☆42Updated this week
- NIST OSCAL SDK and CLI☆38Updated 4 years ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆83Updated 7 years ago