dependency-check / Dependency-Check_Action
Github action to run dependency check
☆72Updated 5 months ago
Alternatives and similar repositories for Dependency-Check_Action:
Users that are interested in Dependency-Check_Action are comparing it to the libraries listed below
- Count distinct contributor of Snyk watched repos across several SCM☆32Updated 7 months ago
- OWASP Foundation Web Respository☆81Updated last week
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆106Updated last year
- Examples of integrating the Snyk CLI into a CI/CD system☆84Updated last month
- A tool to check the security settings of Github Organizations.☆70Updated last year
- Compares and analyzes GCP IAM roles.☆77Updated 8 months ago
- Publishes BOMs to Dependency-Track from GitHub Actions☆48Updated 3 months ago
- GitHub action to scan container images with Palo Alto Networks' Prisma Cloud☆53Updated 7 months ago
- GitHub Advance Security Compliance Action☆132Updated 2 years ago
- Exports vulnerability scan data from the Checkmarx SAST platform for use in analytical tools.☆19Updated 2 months ago
- CloudSplaining on AWS Managed Policies☆41Updated this week
- ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …☆38Updated last month
- GitHub Advanced Security Policy as Code☆77Updated 2 weeks ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆170Updated 2 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆224Updated 5 months ago
- OWASP Foundation Web Respository☆27Updated 5 months ago
- OWASP Foundation Web Respository☆54Updated last year
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆59Updated 3 years ago
- Software Component Verification Standard (SCVS)☆138Updated 9 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆61Updated 7 months ago
- AWS honey token manager☆87Updated 5 months ago
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 5 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆54Updated last week
- OWASP Foundation Web Respository☆18Updated 3 weeks ago
- Safer AWS SCP deployments via real-time monitoring☆50Updated last year
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆60Updated last year
- ☆47Updated last year
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆50Updated 2 years ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆97Updated last year