anchore/vulnerability-match-labels external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

anchore/vulnerability-match-labels

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/anchore/vulnerability-match-labels)

Close

anchore / vulnerability-match-labelsView on GitHubMore

• External links
• Readme badge

Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners

☆14May 20, 2026Updated this week

Alternatives and similar repositories for vulnerability-match-labels

Users that are interested in vulnerability-match-labels are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• fabric8-analytics / cvejob

  View on GitHub
  A tool which tries to map CVEs from NVD to packages in supported ecosystems (Maven, NPM, PyPI).
  ☆12Jul 12, 2025Updated 10 months ago
• wagoodman / go-bouncer

  View on GitHub
  Reports on the licenses used by a Go package and its dependencies.
  ☆11Jul 24, 2024Updated last year
• anchore / yardstick

  View on GitHub
  Compare vulnerability scanners results (to make them better!)
  ☆27Updated this week
• feamster / overleaf-sync

  View on GitHub
  Overleaf-GitHub sync automation tool
  ☆20Jan 30, 2026Updated 3 months ago
• ckotzbauer / vulnerability-operator

  View on GitHub
  Scans SBOMs for vulnerabilities with Grype
  ☆87Updated this week
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• huaweicloud / huaweicloud-ansible-modules

  View on GitHub
  Ansible Collection for Huawei Cloud
  ☆12Jan 24, 2023Updated 3 years ago
• jgamblin / CISA_Enrichment

  View on GitHub
  CISA Known Exploited Vulnerabilities Catalog Enrichment
  ☆19Jun 24, 2024Updated last year
• chainguard-dev / go-apk

  View on GitHub
  native go library for installation and management of apk packages
  ☆31Jun 5, 2024Updated last year
• popey / grummage

  View on GitHub
  Grummage is an interactive terminal frontend to Grype
  ☆46Apr 29, 2026Updated 3 weeks ago
• tony / awesome-tmux-configs

  View on GitHub
  Add your configs for tmux
  ☆18Apr 3, 2022Updated 4 years ago
• blackberry / UBCIS

  View on GitHub
  Ultimate Benchmark for Container Image Scanners
  ☆13Oct 16, 2020Updated 5 years ago
• chanduusc / prismacloud-demo

  View on GitHub
  Complete CNAPP Demo using Prisma Cloud
  ☆17Mar 26, 2025Updated last year
• anonymous-Bssazg / LLM4Vuln

  View on GitHub
  Data for LLM4Vuln
  ☆14Jan 28, 2024Updated 2 years ago
• wagoodman / go-partybus

  View on GitHub
  an go event bus
  ☆13May 16, 2023Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• chainguard-dev / gobump

  View on GitHub
  Go tool to declaratively bump dependencies.
  ☆12May 19, 2026Updated last week
• imjasonh / csvstruct

  View on GitHub
  Decode/encode CSV data into/from structs using reflection.
  ☆15Dec 18, 2023Updated 2 years ago
• opencybersecurityalliance / kestrel-jupyter

  View on GitHub
  Kestrel Jupyter Notebook Kernel
  ☆10Oct 19, 2023Updated 2 years ago
• fedoraredteam / cyber-test-lab

  View on GitHub
  Fedora Cyber Test Lab offers quantitative static and dynamic risk analysis of binaries
  ☆13Feb 11, 2018Updated 8 years ago
• anchore / nvd-data-overrides

  View on GitHub
  ☆50Updated this week
• openvex / vexctl

  View on GitHub
  A tool to create, transform and attest VEX metadata
  ☆192May 19, 2026Updated last week
• stevespringett / cvss-calculator

  View on GitHub
  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
  ☆51Jan 22, 2026Updated 4 months ago
• anchore / grype-vscode

  View on GitHub
  Grype vulnerability check plugin for Visual Studio Code
  ☆25Dec 11, 2024Updated last year
• thilinaba / bash-parallel

  View on GitHub
  Parallel processing in Bash with limited number of concurrent forks
  ☆15Oct 26, 2021Updated 4 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• awslabs / yesiscan

  View on GitHub
  Automatic license scanning and reports!
  ☆17Feb 28, 2023Updated 3 years ago
• fedoraredteam / rpm2cpe

  View on GitHub
  rpm2cpe translates package names to CPE values.
  ☆11Oct 25, 2017Updated 8 years ago
• madpah / vexy

  View on GitHub
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆23Jan 19, 2025Updated last year
• AntoOnline / bash-script-docker-virustotal-scan-containers

  View on GitHub
  Bash script that backs up Docker images or containers, and then scans them using VirusTotal.
  ☆16May 2, 2023Updated 3 years ago
• containerd / ltag

  View on GitHub
  Prepends project files with given template.
  ☆18Mar 4, 2025Updated last year
• chainguard-dev / vulnerability-scanner-support

  View on GitHub
  Resources to help vulnerability scanners
  ☆13May 18, 2026Updated last week
• spdx / spdx-examples

  View on GitHub
  Examples of SPDX files for software combinations
  ☆147May 19, 2026Updated last week
• spdx / spdx-3-model

  View on GitHub
  The model for the information captured in SPDX version 3 standard.
  ☆101Updated this week
• sbs2001 / purl2cpe

  View on GitHub
  This is a mapping of CPEs to package urls created by using VulnerableCode's data
  ☆10Aug 14, 2020Updated 5 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• Tencent / tke-kms-plugin

  View on GitHub
  Kubernetes KMS provider plugin, backed by Tencent Cloud KMS service
  ☆17Jul 25, 2024Updated last year
• ietf-wg-scitt / draft-ietf-scitt-architecture

  View on GitHub
  An Architecture for Trustworthy Digital Supply Chain Transparency Services
  ☆18Oct 19, 2025Updated 7 months ago
• pyupio / dparse

  View on GitHub
  A parser for Python dependency files
  ☆64Nov 25, 2024Updated last year
• chainguard-dev / tlogistry

  View on GitHub
  Transparenty Immutable Container Image Tags
  ☆20Jul 5, 2023Updated 2 years ago
• luhring / example-container-image-supply-chain-security

  View on GitHub
  Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosign
  ☆12Sep 15, 2021Updated 4 years ago
• anchore / binny

  View on GitHub
  Manage a directory of binaries without a package manager
  ☆54Updated this week
• DS3Lab / LambdaML

  View on GitHub
  Machine learning on serverless platform
  ☆10Jul 2, 2022Updated 3 years ago