Alternatives and similar repositories for HelloShiftLeft

Users that are interested in HelloShiftLeft are comparing it to the libraries listed below

• eclipse-jbom / jbom
  ☆120Updated 8 months ago
• blackducksoftware / blackduck-docker-inspector
  ☆21Updated 3 years ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
  ☆50Updated this week
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆48Updated 5 months ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆54Updated this week
• augustd / owasp-security-logging
  OWASP Security Logging library for Java
  ☆119Updated 2 years ago
• CVEProject / automation-working-group
  CVE Automation Working Group
  ☆180Updated last week
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆130Updated last week
• JLLeitschuh / bulk-security-pr-generator
  Generate thousands of pull requests to fix widespread security vulnerabilities across GitHub.
  ☆36Updated 8 months ago
• RIGS-IT / sonar-xanitizer
  Integrates Xanitizer results into SonarQube
  ☆21Updated 4 years ago
• cschneider4711 / SWAT
  Serial Whitelist Application Trainer
  ☆30Updated 6 years ago
• jenkinsci / contrast-continuous-application-security-plugin
  Jenkins Plugin from Contrast Security
  ☆13Updated last year
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆153Updated 9 months ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆73Updated 5 months ago
• STAMP-project / pitest-descartes
  Descartes supports developers to improve their test suites by reporting weak spots in covered code
  ☆126Updated 3 months ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆137Updated last week
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆62Updated 7 months ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆101Updated 3 weeks ago
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• ShiftLeftSecurity / overflowdb
  ShiftLeft OverflowDB
  ☆132Updated 7 months ago
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆96Updated 2 years ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆111Updated 6 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆132Updated 9 months ago
• sigstore / sigstore-maven-plugin
  sigstore maven plugin
  ☆19Updated last year
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆159Updated last year
• openrewrite / rewrite-jenkins
  OpenRewrite recipes to continuously modernize Jenkins plugins.
  ☆13Updated this week
• dschadow / ApplicationIntrusionDetection
  Application Intrusion Detection projects
  ☆19Updated last year
• STAMP-project / dspot
  Automatically detect and generate missing assertions for Junit test cases (also known as test amplification)
  ☆118Updated last year
• spdx / spdx-maven-plugin
  Plugin for supporting SPDX in a Maven build.
  ☆58Updated 3 weeks ago