Alternatives and similar repositories for HelloShiftLeft

Users that are interested in HelloShiftLeft are comparing it to the libraries listed below

• JLLeitschuh / bulk-security-pr-generator
  Generate thousands of pull requests to fix widespread security vulnerabilities across GitHub.
  ☆33Updated 2 months ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
  ☆46Updated 8 months ago
• eclipse-jbom / jbom
  ☆116Updated 3 months ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆119Updated last week
• ShiftLeftSecurity / shiftleft-java-demo
  ☆9Updated 11 months ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆95Updated this week
• jenkinsci / contrast-continuous-application-security-plugin
  Jenkins Plugin from Contrast Security
  ☆13Updated last year
• CVEProject / automation-working-group
  CVE Automation Working Group
  ☆173Updated this week
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆52Updated this week
• spdx / spdx-maven-plugin
  Plugin for supporting SPDX in a Maven build.
  ☆57Updated 2 weeks ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆150Updated last year
• mal-lang / exampleLang
  A MAL language that demonstrates the Maven project structure
  ☆23Updated 3 years ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated last year
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆95Updated last year
• ShiftLeftSecurity / overflowdb
  ShiftLeft OverflowDB
  ☆129Updated 2 months ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆149Updated 4 months ago
• eclipse-cognicrypt / CogniCrypt
  CogniCrypt is an Eclipse plugin that supports Java developers in using Java Cryptographic APIs.
  ☆62Updated 8 months ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆137Updated last week
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• mirswamp / deployment
  SWAMP-in-a-Box
  ☆62Updated 4 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆42Updated last month
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆316Updated last year
• snyk-labs / java-goof
  ☆98Updated this week
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆110Updated 5 years ago
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆187Updated this week
• SonarSource / orchestrator
  Java library for running SonarQube in tests
  ☆17Updated this week
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆56Updated 4 years ago
• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆81Updated last week
• philippederyck / mooc-websecurity-beersafe-3T2017
  The BeerSafe application for the Web Security Fundamentals MOOC
  ☆16Updated 7 years ago
• blackducksoftware / blackduck-docker-inspector
  ☆21Updated 2 years ago