fossas / fossa-cliLinks
Fast, portable and reliable dependency analysis for any codebase. Supports license & vulnerability scanning for large monoliths. Language-agnostic; integrates with 20+ build systems.
☆1,398Updated this week
Alternatives and similar repositories for fossa-cli
Users that are interested in fossa-cli are comparing it to the libraries listed below
Sorting:
- A Ruby gem to cache and verify the licenses of dependencies☆1,004Updated this week
- Find licenses for your project's dependencies.☆1,763Updated 11 months ago
- Python reference implementation of The Update Framework (TUF)☆1,665Updated last week
- Artifact Metadata API☆1,540Updated 2 weeks ago
- Build powerful pipelines in any programming language.☆5,223Updated last year
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆791Updated last week
- Reduce maintainer fatigue by automating GitHub☆815Updated last year
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,157Updated this week
- The Update Framework specification☆389Updated last year
- A service that analyzes docker images and scans for vulnerabilities☆1,587Updated 2 years ago
- Contributor License Agreement assistant (CLA assistant)☆1,413Updated last year
- Pull Requests for GitHub repository settings☆987Updated this week
- Policy enforcement for your pipelines.☆469Updated last week
- sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services☆3,111Updated 2 months ago
- Notary is a project that allows anyone to have trust over arbitrary collections of data☆3,276Updated 10 months ago
- A License Classifier☆328Updated 4 months ago
- SQL interface to git repositories, written in Go. https://docs.sourced.tech/gitbase☆2,078Updated last year
- CUE has moved to https://github.com/cue-lang/cue☆3,075Updated 3 years ago
- A faster file programming language detector☆459Updated 3 years ago
- Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dock…☆990Updated last year
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆402Updated last week
- 🤖 All the missing GitHub automation 🙂 🙌☆704Updated 10 months ago
- Just One Single History☆1,595Updated last month
- Curated list of awesome tools for managing open source programs☆470Updated last month
- GitHub App that enforces the Developer Certificate of Origin (DCO) on Pull Requests☆318Updated last month
- LGTM is a simple pull request approval system [ARCHIVE]☆988Updated 7 years ago
- A Ruby Gem to detect under what license a project is distributed.☆840Updated last week
- Compute various size metrics for a Git repository, flagging those that might cause problems☆3,817Updated 10 months ago
- a modern crypto messaging format☆1,009Updated 5 months ago
- A self-hosted server for source code parsing☆364Updated last year