cycodehq / cycode-cli
Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning
☆85Updated last week
Related projects ⓘ
Alternatives and complementary repositories for cycode-cli
- Runtime Security Solution for your CI/CD Pipeline☆87Updated 2 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆125Updated 9 months ago
- CI/CD Security Analyzer☆623Updated 3 weeks ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆169Updated 9 months ago
- SBOM quality score - Quality metrics for your sboms☆184Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆221Updated 3 months ago
- Tool to achieve policy driven vetting of open source dependencies☆228Updated last week
- Utility that provides an API platform for validating, querying and managing BOM data☆94Updated this week
- A utility to (re-)import findings and language data into DefectDojo☆42Updated last month
- boostsecurityio/poutine☆229Updated last week
- The security workflow engine!☆73Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆56Updated last week
- Enrich SBOMs with data from third party services☆113Updated last week
- Format agnostic SBOM tooling☆78Updated this week
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆57Updated 2 weeks ago
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆726Updated 3 months ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆312Updated 3 weeks ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆75Updated this week
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆61Updated this week
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆150Updated 2 months ago
- Evaluate source control (GitHub) security posture☆249Updated last year
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆155Updated last week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆509Updated this week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆440Updated last month
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆86Updated 9 months ago
- OWASP Dependency Track API client for intergration into CI/CD pipeline☆51Updated 3 months ago
- Publishes BOMs to Dependency-Track from GitHub Actions☆47Updated last month
- Gram is Klarna's own threat model diagramming tool☆280Updated 2 weeks ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆769Updated last week