RedHatProductSecurity / osidb
OSIDB — Open Security Issue Database
☆29Updated this week
Alternatives and similar repositories for osidb:
Users that are interested in osidb are comparing it to the libraries listed below
- Component Registry (Corgi) aggregates component data across Red Hat's supported products, managed services, and internal product pipeline…☆17Updated 3 months ago
- ☆29Updated this week
- RapiDAST enables simple, continuous and fully automated application security testing☆70Updated this week
- A TUF repository and signing tool☆33Updated this week
- Utility that provides an API and CLI to identify licenses and legal terms☆43Updated 10 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆93Updated last week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆31Updated last year
- Caching service for source code and external dependencies☆60Updated last week
- Example CLI project to demo API architecture and protobom library☆20Updated this week
- in-toto is a framework to secure the software supply chain.☆70Updated 3 months ago
- ☆48Updated this week
- ☆62Updated 9 months ago
- TUF repository for Sigstore trust root☆100Updated this week
- Check SPDX SBOM for NTIA minimum elements☆62Updated 3 weeks ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆78Updated last week
- Examples of SPDX files for software combinations☆128Updated 2 weeks ago
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated last year
- Log monitor for Rekor to verify immutability and monitor entries☆31Updated this week
- ☆20Updated 3 weeks ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆18Updated last week
- Open Source Vulnerability schema.☆198Updated 2 weeks ago
- Automating Compliance Tooling Project☆21Updated 3 years ago
- Report on quality of SBOM contents☆17Updated 4 months ago
- Supply Chain Query Tool☆13Updated 2 years ago
- A BOM repository server for distributing CycloneDX BOMs☆77Updated last year
- OpenVEX Specification☆145Updated 3 weeks ago
- Operator providing Kubernetes cluster compliance checks☆44Updated this week
- Technical Advisory Council☆122Updated last week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆88Updated 2 weeks ago