github / advisory-databaseLinks
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
☆1,936Updated this week
Alternatives and similar repositories for advisory-database
Users that are interested in advisory-database are comparing it to the libraries listed below
Sorting:
- Open source vulnerability DB and triage service.☆1,958Updated this week
- Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023☆1,490Updated 2 months ago
- Binaries for the CodeQL CLI☆862Updated this week
- Global Security Database☆319Updated last year
- Open Source Package Analysis☆840Updated 4 months ago
- Actions for running CodeQL analysis☆1,322Updated this week
- An extension for Visual Studio Code that adds rich language support for CodeQL☆465Updated this week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,152Updated last week
- Resources related to GitHub Security Lab☆1,521Updated last month
- CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security☆8,640Updated this week
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆964Updated this week
- This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published …☆342Updated last month
- GitHub App to set and enforce security policies☆1,354Updated this week
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,571Updated 3 years ago
- CVE cache of the official CVE List in CVE JSON 5 format☆2,199Updated this week
- GuardDog is a CLI tool to Identify malicious PyPI and npm packages☆790Updated this week
- Starter workspace to use with the CodeQL extension for Visual Studio Code.☆536Updated 2 weeks ago
- The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnera…☆1,487Updated this week
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆850Updated last year
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,393Updated this week
- Vulnerability Intelligence Platform☆2,177Updated this week
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆7,628Updated this week
- Open Source Vulnerability schema.☆206Updated this week
- Supply-chain Levels for Software Artifacts☆1,709Updated this week
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,377Updated this week
- 🦄🔒 Awesome list of secrets in environment variables 🖥️☆897Updated 2 years ago
- A community sourced list of log4j-affected software☆1,127Updated 2 years ago
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆497Updated 8 months ago
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆628Updated this week
- A repo to conduct vulnerability enrichment.☆670Updated this week