Alternatives and similar repositories for hub

Users that are interested in hub are comparing it to the libraries listed below

• blackducksoftware / detect
  Scanning and analysis for Black Duck SCA products.
  ☆175Updated this week
• blackducksoftware / hub-rest-api-python
  HUB REST API Python bindings
  ☆93Updated last week
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 3 years ago
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆207Updated 2 years ago
• jenkinsci / dependency-track-plugin
  Main repository for the official Dependency-Track Jenkins plugin
  ☆50Updated this week
• anchore / anchore-cli
  Simple command-line client to the Anchore Engine service
  ☆114Updated 10 months ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆93Updated last week
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆136Updated this week
• neuvector / kubernetes-cis-benchmark
  A set of scripts inspired by CIS Kubernetes Benchmark that checks best-practices of Kubernetes installations
  ☆266Updated last year
• anchore / ci-tools
  Contains scripts for running anchore engine in CI pipelines
  ☆34Updated 2 years ago
• aquasecurity / docker-bench
  Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark
  ☆215Updated 4 months ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆398Updated 2 weeks ago
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆96Updated 2 weeks ago
• ossf / wg-security-tooling
  OpenSSF Security Tooling Working Group
  ☆311Updated last year
• aquasecurity / harbor-scanner-trivy
  Use Trivy as a plug-in vulnerability scanner in the Harbor registry
  ☆223Updated 8 months ago
• blackducksoftware / blackduck-docker-inspector
  ☆21Updated 2 years ago
• CycloneDX / cyclonedx-cli
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆366Updated 6 months ago
• coverity / coverity-sonar-plugin
  ☆51Updated 5 months ago
• jenkinsci / fortify-plugin
  Fortify Jenkins plugin
  ☆25Updated 3 months ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆147Updated 2 months ago
• aquasecurity / vuln-list
  NVD, Ubuntu, Alpine
  ☆430Updated this week
• aquasecurity / trivy-db
  ☆266Updated last week
• CycloneDX / cdxgen
  Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…
  ☆703Updated this week
• quay / claircore
  foundation modules for scanning container packages and reporting vulnerabilities
  ☆147Updated this week
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆323Updated last month
• opensbom-generator / spdx-sbom-generator
  Support CI generation of SBOMs via golang tooling.
  ☆424Updated 4 months ago
• dev-sec / cis-kubernetes-benchmark
  CIS Kubernetes Benchmark - InSpec Profile
  ☆302Updated 9 months ago
• ossf / s2c2f
  The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…
  ☆208Updated last week
• arminc / clair-local-scan
  Run CoreOs Clair standalone
  ☆253Updated 4 months ago
• SonarSource / mysql-migrator
  Command line tool to migrate MySQL database of SonarQube 6.7-7.8 to non-MySQL
  ☆39Updated 4 years ago