blackducksoftware / blackduck-docker-inspectorLinks
☆21Updated 3 years ago
Alternatives and similar repositories for blackduck-docker-inspector
Users that are interested in blackduck-docker-inspector are comparing it to the libraries listed below
Sorting:
- Scanning and analysis for Black Duck SCA products.☆185Updated this week
- Integrates OWASP Zed Attack Proxy reports into SonarQube☆72Updated 2 months ago
- Harbor Scanner Adapter for Anchore Engine and Enterprise☆40Updated this week
- Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).☆138Updated this week
- Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark☆220Updated 8 months ago
- Simple command-line client to the Anchore Engine service☆114Updated last year
- OWASP SonarQube Project☆110Updated 6 years ago
- Links and resources for the O'Reilly Kubernetes Security book☆99Updated 4 years ago
- Contains scripts for running anchore engine in CI pipelines☆34Updated 3 years ago
- Jenkins plugin that adds Anchore container image analysis and policy evaluation to Jenkins as a build step☆30Updated 9 months ago
- Plugin for Docker CLI to support SBOM creation using Syft☆156Updated last month
- Dockerized version of Nexus IQ Server☆26Updated 3 weeks ago
- A Docker build for OWASP Zed Attack Proxy to be used in CI/CD pipelines☆29Updated 5 years ago
- Kubernetes Common Configuration Scoring System☆123Updated 3 years ago
- Software Component Verification Standard (SCVS)☆150Updated 6 months ago
- Grype vulnerability check plugin for Visual Studio Code☆23Updated 9 months ago
- ☆11Updated last year
- This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.☆24Updated 4 years ago
- Securing Alice's, Bob's and Carl's software supply chain using in-toto☆97Updated this week
- Static Analysis Library for Containers☆198Updated 2 years ago
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆47Updated 9 months ago
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆203Updated 5 months ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- Open API spec definition for the scanners that can be plugged into Harbor to do artifact scanning.☆26Updated last year
- Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry☆36Updated last year
- ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.☆68Updated last year
- Enables scanning of docker builds in Jenkins for OS package vulnerabilities.☆35Updated 2 years ago
- OWASP Kubernetes Security Testing Guide☆38Updated last year
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆97Updated last week
- book website☆71Updated 3 years ago