Alternatives and similar repositories for diggity

Users that are interested in diggity are comparing it to the libraries listed below

• jenkinsci / jacked-plugin
  ☆18Updated 9 months ago
• carbonetes / jacked
  Jacked provides organizations with a more comprehensive look at their application to take calculated actions and create a better security…
  ☆103Updated last week
• carbonetes / diggity-action
  A Github Action that utilizes Diggity to generate software bill-of-materials (SBOM).
  ☆14Updated 2 years ago
• carbonetes / brainiac
  BrainIAC uses static code analysis to analyze IAC code to detect security issues before deployment. This tool can scan for issues like se…
  ☆70Updated 8 months ago
• defenseunicorns / uds-core
  A FOSS secure runtime platform for mission-critical capabilities
  ☆90Updated this week
• defenseunicorns / maru-runner
  The Unicorn Task Runner
  ☆19Updated this week
• defenseunicorns / uds-cli
  ☆33Updated this week
• spdx / ntia-conformance-checker
  Check SPDX SBOM for NTIA minimum elements
  ☆61Updated 2 weeks ago
• PQCA / sonar-cryptography
  This repository contains a SonarQube Plugin that detects cryptographic assets in source code and generates CBOM.
  ☆33Updated this week
• vmware-samples / sbom-composer
  A tool that takes two or more micro SBOMs and composes them into one distributable SBOM
  ☆23Updated 2 years ago
• defenseunicorns / delivery-aws-iac
  ☆16Updated last month
• defenseunicorns / lula
  The Compliance Validator
  ☆177Updated this week
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆229Updated 9 months ago
• carbonetes / carbonetes-lens-extension
  ☆35Updated 2 years ago
• infance-tony / python-programing
  ☆7Updated last year
• infance-tony / DataScience-Python
  ☆8Updated last year
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated 3 months ago
• act-project / TAC
  Automating Compliance Tooling Project
  ☆21Updated 3 years ago
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆136Updated this week
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆92Updated this week
• nyph-infosec / daggerboard
  ☆100Updated 7 months ago
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆77Updated last year
• philips-software / SPDXMerge
  SPDX Merge tool
  ☆43Updated 3 weeks ago
• edwingeorgeshaji / edwingeorgeshaji
  ding dong... anyone there?
  ☆16Updated last month
• infance-tony / Learning-Dart
  ☆6Updated last year
• ossf / tac
  Technical Advisory Council
  ☆123Updated last week
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆172Updated last month
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆70Updated this week
• defenseunicorns / pepr
  Type safe K8s middleware for humans
  ☆157Updated this week
• sbomify / sbomify
  sbomify is an SBOM management platform.
  ☆24Updated this week