SAP/risk-explorer-for-software-supply-chains external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

SAP/risk-explorer-for-software-supply-chains

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/SAP/risk-explorer-for-software-supply-chains)

Close

SAP / risk-explorer-for-software-supply-chainsView on GitHubMore

• External links
• Readme badge

A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and other resources. The taxonomy as well as related safeguards can be explored using an interactive visualization tool.

☆81May 22, 2026Updated this week

Alternatives and similar repositories for risk-explorer-for-software-supply-chains

Users that are interested in risk-explorer-for-software-supply-chains are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• SAP-archive / cross-language-detection-artifacts

  View on GitHub
  This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…
  ☆22Mar 7, 2025Updated last year
• ossf / package-feeds

  View on GitHub
  Feed parsing for language package manager updates
  ☆85Dec 4, 2024Updated last year
• AevaOnline / supply-chain-synthesis

  View on GitHub
  Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.
  ☆34Apr 4, 2023Updated 3 years ago
• bureado / awesome-software-supply-chain-security

  View on GitHub
  A compilation of resources in the software supply chain security domain, with emphasis on open source
  ☆362May 3, 2026Updated 3 weeks ago
• RiskBasedPrioritization / RiskBasedPrioritization.github.io

  View on GitHub
  ☆20Jul 16, 2025Updated 10 months ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• SAP / project-kb

  View on GitHub
  Home page of project "KB"
  ☆134Mar 27, 2025Updated last year
• ASSERT-KTH / deptrim

  View on GitHub
  DepTrim automatically specializes the software supply chain of dependencies in Maven projects https://arxiv.org/pdf/2302.08370
  ☆15May 17, 2026Updated last week
• lyvd / bandit4mal

  View on GitHub
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆30Sep 1, 2022Updated 3 years ago
• chainguard-sandbox / bom-shelter

  View on GitHub
  A place to systematically store software bill of materials (SBOM) documents.
  ☆50Jun 1, 2023Updated 2 years ago
• correctexam / corrigeExamFront

  View on GitHub
  Web app to grade your assessments anywhere
  ☆24Jan 26, 2026Updated 4 months ago
• microsoft / OSSGadget

  View on GitHub
  Collection of tools for analyzing open source packages.
  ☆362May 1, 2026Updated 3 weeks ago
• ldklab / typomind-release

  View on GitHub
  ☆13Jun 26, 2023Updated 2 years ago
• bbaudry / swart-studio

  View on GitHub
  software art polyglot studio
  ☆21May 1, 2026Updated 3 weeks ago
• CycloneDX / cyclonedx-property-taxonomy

  View on GitHub
  A taxonomy of all official CycloneDX property namespaces and names
  ☆22Updated this week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• mozilla / rust-cascade

  View on GitHub
  A filter cascade implementation in rust
  ☆15Apr 5, 2023Updated 3 years ago
• osssanitizer / maloss

  View on GitHub
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆140Oct 5, 2022Updated 3 years ago
• DataDog / malicious-software-packages-dataset

  View on GitHub
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆341Updated this week
• gcve-eu / gcve

  View on GitHub
  A Python client for the Global CVE Allocation System.
  ☆18May 20, 2026Updated last week
• kpcyrd / ismyarchverifiedyet

  View on GitHub
  Experimental script to query rebuilderd for results
  ☆14Dec 4, 2023Updated 2 years ago
• cs-au-dk / taser

  View on GitHub
  ☆13Feb 11, 2022Updated 4 years ago
• zhongxingyu / Java-Annotation-Study

  View on GitHub
  Source code and data about our large scale study about Java annotaion in practice
  ☆12Apr 14, 2023Updated 3 years ago
• diverse-project / melange

  View on GitHub
  The Melange Language Workbench
  ☆30Aug 18, 2023Updated 2 years ago
• spdx / meetings

  View on GitHub
  This repository stores meetings minutes for the SPDX project
  ☆42Updated this week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• opencybersecurityalliance / kestrel-jupyter

  View on GitHub
  Kestrel Jupyter Notebook Kernel
  ☆10Oct 19, 2023Updated 2 years ago
• messlabnyu / irqdebloat

  View on GitHub
  ☆14Dec 10, 2021Updated 4 years ago
• sigstore / rekor-search-ui

  View on GitHub
  Search Rekor for entries
  ☆43Mar 23, 2026Updated 2 months ago
• Marynk / JavaScript-vulnerability-detection

  View on GitHub
  a project repository for a paper
  ☆20May 4, 2024Updated 2 years ago
• Bristol-Cyber-Security-Group / decisions-disruptions-kit

  View on GitHub
  Getting started with Decisions-Disruptions
  ☆11Jan 28, 2020Updated 6 years ago
• vuduclyunitn / software_supply_chain_papers

  View on GitHub
  This repository contains a list of papers about software supply chain
  ☆29May 22, 2024Updated 2 years ago
• swtv-kaist / MUSIC

  View on GitHub
  MUSIC: MUtation analySIs tool with High Configurability and Extensibility
  ☆18Apr 24, 2026Updated last month
• IQTLabs / pypi-scan

  View on GitHub
  Scan pypi for typosquatting
  ☆37Jan 23, 2023Updated 3 years ago
• CycodeLabs / gh-injection-vuln-demo

  View on GitHub
  Demos for our research on Github actions script injection vulnerabilities
  ☆13May 14, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• meta-fun / awesome-software-supply-chain-security

  View on GitHub
  Sharing software supply chain security open source projects
  ☆54Dec 19, 2022Updated 3 years ago
• anchore / nvd-data-overrides

  View on GitHub
  ☆50Updated this week
• chainguard-dev / image-comparison

  View on GitHub
  Comparison of Chainguard Images to others
  ☆21Updated this week
• STAMP-project / pitest-descartes

  View on GitHub
  Descartes supports developers to improve their test suites by reporting weak spots in covered code
  ☆127Sep 19, 2025Updated 8 months ago
• chainguard-dev / ssc-reading-list

  View on GitHub
  A reading list for software supply-chain security.
  ☆364Nov 21, 2022Updated 3 years ago
• bomctl / bomctl

  View on GitHub
  Format agnostic SBOM tooling
  ☆136Nov 20, 2025Updated 6 months ago
• IBM / cmnnc

  View on GitHub
  Computational Memory Neural Network Compiler
  ☆11Aug 11, 2021Updated 4 years ago