dependency-check / dependency-check-sonar-plugin

Related projects: ⓘ

• spotbugs / sonar-findbugs
  SpotBugs plugin for SonarQube
  ☆351Updated last week
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆129Updated 2 weeks ago
• porscheinformatik / sonarqube-licensecheck
  SonarQube Licensecheck Plugin
  ☆156Updated this week
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆206Updated last year
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆287Updated last week
• cnescatlab / sonar-cnes-report
  Generates analysis reports from SonarQube web API.
  ☆450Updated 3 weeks ago
• SonarSource / sonar-custom-plugin-example
  Shows how to write a SonarQube plugin
  ☆140Updated 3 weeks ago
• arminc / clair-scanner
  Docker containers vulnerability scan
  ☆846Updated 2 months ago
• okorach / sonar-tools
  Additional command line based tools to help in SonarQube administration tasks
  ☆47Updated this week
• pmckeown / dependency-track-maven-plugin
  Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …
  ☆61Updated 8 months ago
• DependencyTrack / dependency-track
  Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…
  ☆2,582Updated this week
• SonarSource / sonar-scanner-cli
  Scanner CLI for SonarQube and SonarCloud
  ☆362Updated this week
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆67Updated 10 months ago
• jenkinsci / warnings-ng-plugin
  Jenkins Warnings Plugin - Next Generation
  ☆337Updated this week
• soprasteria / sonar-report
  Generates an html report from SonarQube
  ☆86Updated last month
• gabrie-allaigre / sonar-gitlab-plugin
  Add to each commit GitLab in a global commentary on the new anomalies added by this commit and add comment lines of modified files
  ☆713Updated 2 years ago
• CycloneDX / cyclonedx-cli
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆297Updated this week
• SonarSource / sonar-scanner-maven
  SonarQube Scanner for Maven
  ☆142Updated 3 weeks ago
• mc1arke / sonarqube-community-branch-plugin
  A plugin that allows branch analysis and pull request decoration in the Community version of Sonarqube
  ☆2,186Updated last week
• SonarSource / docker-sonarqube
  SonarQube in Docker
  ☆1,371Updated 3 weeks ago
• checkstyle / sonar-checkstyle
  Support on Checkstyle in SonarQube. Officially transfered from https://github.com/SonarQubeCommunity/sonar-checkstyle
  ☆171Updated 3 months ago
• CycloneDX / cyclonedx-gradle-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
  ☆155Updated this week
• javamachr / sonar-gitlab-plugin
  Add to each commit GitLab in a global commentary on the new anomalies added by this commit and add comment lines of modified files
  ☆123Updated last year
• Skyscanner / sonar-secrets
  SonarQube plugin for identifying hardcoded secrets, such as passwords, API keys, AWS credentials, etc..
  ☆99Updated 9 months ago
• anchore / anchore-engine
  A service that analyzes docker images and scans for vulnerabilities
  ☆1,580Updated last year
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆61Updated this week
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆109Updated 5 years ago
• SonarSource / sonar-scanner-cli-docker
  Docker image for SonarScanner CLI
  ☆187Updated 3 weeks ago
• CycloneDX / cdxgen
  Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…
  ☆550Updated this week
• SonarSource / sonar-scanner-jenkins
  SonarQube Scanner for Jenkins
  ☆180Updated this week