blackducksoftware / blackduck-docker-inspectorLinks
☆21Updated 2 years ago
Alternatives and similar repositories for blackduck-docker-inspector
Users that are interested in blackduck-docker-inspector are comparing it to the libraries listed below
Sorting:
- Scanning and analysis for Black Duck SCA products.☆180Updated last week
- Integrates OWASP Zed Attack Proxy reports into SonarQube☆72Updated last month
- Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark☆220Updated 6 months ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- Static Analysis Library for Containers☆198Updated 2 years ago
- This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.☆24Updated 4 years ago
- Software Component Verification Standard (SCVS)☆149Updated 4 months ago
- Black Duck Docker Orchestration Files/Documentation☆124Updated 3 weeks ago
- Links and resources for the O'Reilly Kubernetes Security book☆98Updated 4 years ago
- Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).☆138Updated 3 weeks ago
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆46Updated 8 months ago
- Kubernetes Common Configuration Scoring System☆123Updated 3 years ago
- Contains scripts for running anchore engine in CI pipelines☆34Updated 3 years ago
- Harbor Scanner Adapter for Anchore Engine and Enterprise☆39Updated last week
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆60Updated 2 months ago
- OWASP SonarQube Project☆110Updated 6 years ago
- Checkmarx Scan and Result Orchestration☆101Updated last month
- OWASP Kubernetes Security Testing Guide☆38Updated 11 months ago
- A Docker build for OWASP Zed Attack Proxy to be used in CI/CD pipelines☆28Updated 5 years ago
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆200Updated 4 months ago
- foundation modules for scanning container packages and reporting vulnerabilities☆147Updated last week
- Simple command-line client to the Anchore Engine service☆114Updated last year
- This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.☆43Updated last month
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆195Updated 3 weeks ago
- Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry☆36Updated 10 months ago
- ☆53Updated 3 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆118Updated this week
- The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.☆60Updated 10 months ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆46Updated last month
- Container Security Verification Standard☆58Updated 6 years ago