Alternatives and similar repositories for blackduck-docker-inspector:

Users that are interested in blackduck-docker-inspector are comparing it to the libraries listed below

• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated 4 months ago
• blackducksoftware / detect
  Scanning and analysis for Black Duck SCA products.
  ☆170Updated this week
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆93Updated this week
• jenkinsci / aqua-microscanner-plugin
  Enables scanning of docker builds in Jenkins for OS package vulnerabilities.
  ☆35Updated last year
• fabric8-analytics / cvedb
  CVE database
  ☆22Updated 4 years ago
• aquasecurity / harbor-scanner-aqua
  Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry
  ☆37Updated 6 months ago
• jenkinsci / checkmarx-plugin
  This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.
  ☆43Updated this week
• anchore / harbor-scanner-adapter
  Harbor Scanner Adapter for Anchore Engine and Enterprise
  ☆37Updated this week
• jenkinsci / anchore-container-scanner-plugin
  Jenkins plugin that adds Anchore container image analysis and policy evaluation to Jenkins as a build step
  ☆30Updated 4 months ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 2 years ago
• sonatype / docker-nexus-iq-server
  Dockerized version of Nexus IQ Server
  ☆26Updated last week
• anchore / grype-vscode
  Grype vulnerability check plugin for Visual Studio Code
  ☆22Updated 4 months ago
• rstatsinger / contrast-java-webgoat-docker
  Contrast Security Instrumentation for Dockerized Webgoat, with lab instructions.
  ☆26Updated 2 years ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 5 years ago
• alpinelinux / alpine-secdb
  [MIRROR] Alpine Linux security database
  ☆40Updated 4 years ago
• aquasecurity / fanal
  Static Analysis Library for Containers
  ☆199Updated last year
• rht-labs / owasp-zap-openshift
  A Docker build for OWASP Zed Attack Proxy to be used in CI/CD pipelines
  ☆27Updated 4 years ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆135Updated this week
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆58Updated last year
• jenkinsci / snyk-security-scanner-plugin
  Test and monitor your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Snyk.
  ☆61Updated 7 months ago
• sonatype-nexus-community / ahab
  ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
  ☆67Updated last year
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆143Updated 3 weeks ago
• OWASP / www-project-kubernetes-security-testing-guide
  OWASP Kubernetes Security Testing Guide
  ☆37Updated 7 months ago
• RIGS-IT / sonar-xanitizer
  Integrates Xanitizer results into SonarQube
  ☆21Updated 3 years ago
• k8s-sec / k8s-sec.github.io
  Links and resources for the O'Reilly Kubernetes Security book
  ☆98Updated 4 years ago
• eclipse-jbom / jbom
  ☆114Updated last week
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆70Updated last year
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• SAP / fosstars-rating-core
  A framework for defining ratings for open source projects. In particular, the framework offers a security rating for open source projects…
  ☆62Updated 2 weeks ago