blackducksoftware / detect

Related projects ⓘ

Alternatives and complementary repositories for detect

• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆81Updated this week
• blackducksoftware / hub
  Black Duck Docker Orchestration Files/Documentation
  ☆120Updated last week
• blackducksoftware / hub-rest-api-python
  HUB REST API Python bindings
  ☆89Updated 2 weeks ago
• jenkinsci / dependency-track-plugin
  Main repository for the official Dependency-Track Jenkins plugin
  ☆44Updated 3 weeks ago
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆206Updated 2 years ago
• blackducksoftware / blackduck-docker-inspector
  ☆20Updated 2 years ago
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆298Updated this week
• jeremylong / Open-Vulnerability-Project
  Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…
  ☆121Updated 2 weeks ago
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆57Updated 7 months ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆47Updated last week
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆174Updated 4 months ago
• CycloneDX / cyclonedx-cli
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆312Updated 2 weeks ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated last week
• Skyscanner / sonar-secrets
  SonarQube plugin for identifying hardcoded secrets, such as passwords, API keys, AWS credentials, etc..
  ☆100Updated 11 months ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆364Updated this week
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆94Updated this week
• aquasecurity / trivy-db
  ☆231Updated last week
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆134Updated 6 months ago
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆90Updated last month
• blackducksoftware / github-action
  Synopsys Detect integration with Github Actions
  ☆17Updated last year
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆74Updated 7 months ago
• CVEProject / automation-working-group
  CVE Automation Working Group
  ☆160Updated this week
• DependencyTrack / frontend
  Frontend UI for Dependency-Track
  ☆105Updated this week
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆129Updated last week
• pmckeown / dependency-track-maven-plugin
  Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …
  ☆62Updated last month
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆88Updated this week
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆281Updated 10 months ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆69Updated last year
• blackducksoftware / blackduck-alert
  Processes notifications from BlackDuck and sends them to supported distribution channels
  ☆24Updated this week
• jenkinsci / script-security-plugin
  Allows Jenkins admins to control what in-process scripts can be run by users
  ☆68Updated 2 weeks ago