Alternatives and similar repositories for detect

Users that are interested in detect are comparing it to the libraries listed below

• blackducksoftware / hub
  Black Duck Docker Orchestration Files/Documentation
  ☆125Updated 2 weeks ago
• blackducksoftware / hub-rest-api-python
  HUB REST API Python bindings
  ☆95Updated last month
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆96Updated last week
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆332Updated this week
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆425Updated this week
• jenkinsci / dependency-track-plugin
  Main repository for the official Dependency-Track Jenkins plugin
  ☆51Updated last week
• blackducksoftware / blackduck-docker-inspector
  ☆21Updated 3 years ago
• aquasecurity / trivy-db
  ☆275Updated last month
• jeremylong / open-vulnerability-cli
  A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…
  ☆147Updated last week
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆53Updated 2 weeks ago
• CycloneDX / cyclonedx-cli
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆403Updated last week
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆138Updated last month
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆323Updated last year
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆149Updated 5 months ago
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆202Updated 5 months ago
• opensbom-generator / spdx-sbom-generator
  Support CI generation of SBOMs via golang tooling.
  ☆425Updated 8 months ago
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆210Updated 2 years ago
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆135Updated 2 months ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆72Updated last month
• jenkinsci / checkmarx-plugin
  This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.
  ☆43Updated last month
• ossf / wg-security-tooling
  OpenSSF Security Tooling Working Group
  ☆315Updated 2 months ago
• DependencyTrack / frontend
  Frontend UI for Dependency-Track
  ☆128Updated last week
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆47Updated 2 months ago
• aquasecurity / vuln-list
  NVD, Ubuntu, Alpine
  ☆440Updated this week
• spdx / spdx-to-osv
  Produce an Open Source Vulnerability JSON file based on information in an SPDX document
  ☆64Updated last year
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆207Updated this week
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆101Updated last week
• awesomeSBOM / awesome-sbom
  A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles
  ☆539Updated 3 months ago
• docker / sbom-cli-plugin
  Plugin for Docker CLI to support SBOM creation using Syft
  ☆156Updated 2 weeks ago
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆94Updated this week