fortify / FortifyVulnerabilityExporterLinks
Export Fortify vulnerability data to GitHub, GitLab, SonarQube and more
☆26Updated 11 months ago
Alternatives and similar repositories for FortifyVulnerabilityExporter
Users that are interested in FortifyVulnerabilityExporter are comparing it to the libraries listed below
Sorting:
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆65Updated 11 months ago
- A walkthrough of security controls for a serverless architecture via a demo application☆11Updated 3 years ago
- This repository includes cloud security policies for IaC and live resources.☆39Updated 11 months ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 11 months ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆56Updated last week
- Sharing software supply chain security open source projects☆50Updated 2 years ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Publishes BOMs to Dependency-Track from GitHub Actions☆54Updated 7 months ago
- Audit Dependency-Track findings and policy violations via policy as code☆33Updated this week
- DefectDojo Community Content☆18Updated 7 months ago
- Offensive Terraform Website☆44Updated 4 years ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- ☆24Updated 2 months ago
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated 2 years ago
- A BOM repository server for distributing CycloneDX BOMs☆77Updated last year
- Slack alert bot for matching Github Audit Events☆10Updated 6 months ago
- BlackDuck GItHub Action☆9Updated 2 years ago
- ☆16Updated 2 years ago
- ☆21Updated 2 years ago
- ZAP Management Scripts☆23Updated last week
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- ☆33Updated 3 years ago
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…☆109Updated last year
- A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.☆105Updated 6 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated last month
- Creates needed resources for federating access between a GCP service account and AWS IAM role.☆29Updated last year
- Analyze any snippet, file, or repository to detect possible security flaws such as secret in code, open source vulnerability, code securi…☆76Updated 9 months ago
- Kubernetes Native, Runtime Container Image Scanning☆39Updated 3 years ago
- INTERCEPT / Policy as Code Auditing & Compliance☆84Updated 2 weeks ago