Alternatives and similar repositories for blackduck-docker-inspector

Users that are interested in blackduck-docker-inspector are comparing it to the libraries listed below

• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• jenkinsci / anchore-container-scanner-plugin
  Jenkins plugin that adds Anchore container image analysis and policy evaluation to Jenkins as a build step
  ☆30Updated 4 months ago
• anchore / harbor-scanner-adapter
  Harbor Scanner Adapter for Anchore Engine and Enterprise
  ☆38Updated last week
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆93Updated last week
• sonatype / docker-nexus-iq-server
  Dockerized version of Nexus IQ Server
  ☆26Updated last week
• fabric8-analytics / cvedb
  CVE database
  ☆22Updated 4 years ago
• rht-labs / owasp-zap-openshift
  A Docker build for OWASP Zed Attack Proxy to be used in CI/CD pipelines
  ☆27Updated 4 years ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated 5 months ago
• jenkinsci / aqua-microscanner-plugin
  Enables scanning of docker builds in Jenkins for OS package vulnerabilities.
  ☆35Updated last year
• blackducksoftware / detect
  Scanning and analysis for Black Duck SCA products.
  ☆172Updated this week
• jenkinsci / snyk-security-scanner-plugin
  Test and monitor your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Snyk.
  ☆61Updated 8 months ago
• ShiftLeftSecurity / HelloShiftLeft
  ☆11Updated last year
• aquasecurity / harbor-scanner-aqua
  Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry
  ☆37Updated 7 months ago
• blackducksoftware / blackduck-jira
  Black Duck plugin for JIRA
  ☆19Updated 2 years ago
• secureCodeBox / secureCodeBox-v2
  This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.
  ☆24Updated 4 years ago
• ptdropper / CVE-Scanner-for-your-SW-BOM
  CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
  ☆17Updated 4 years ago
• fortify-ps / fortify-integration-sonarqube
  Fortify SonarQube Plugin
  ☆22Updated 4 years ago
• blackducksoftware / opssight-connector
  OpsSight Connector documentation
  ☆16Updated 3 years ago
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated 3 months ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 5 years ago
• RIGS-IT / sonar-xanitizer
  Integrates Xanitizer results into SonarQube
  ☆21Updated 3 years ago
• spdx / ntia-conformance-checker
  Check SPDX SBOM for NTIA minimum elements
  ☆61Updated 2 weeks ago
• k8s-sec / k8s-sec.github.io
  Links and resources for the O'Reilly Kubernetes Security book
  ☆98Updated 4 years ago
• omerlh / zap-operator
  ☆21Updated 5 years ago
• jenkinsci / checkmarx-plugin
  This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.
  ☆43Updated this week
• sonatype-nexus-community / ahab
  ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
  ☆67Updated last year
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆144Updated last month
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆70Updated this week
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆44Updated 11 months ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆70Updated last year