Alternatives and similar repositories for oss-rebuild

Users that are interested in oss-rebuild are comparing it to the libraries listed below

• google / vanir
  Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…
  ☆342Updated 3 weeks ago
• coder / httpjail
  HTTP(s) request filter for processes
  ☆786Updated this week
• google / osv-scalibr
  OSV-SCALIBR: A library for Software Composition Analysis
  ☆528Updated this week
• reteps / dockerfmt
  Dockerfile formatter. a modern dockfmt.
  ☆559Updated 3 weeks ago
• mongodb / kingfisher
  Kingfisher is a blazingly fast and highly accurate tool for secret detection and live validation across files, Git repos, GitHub, GitLab,…
  ☆615Updated this week
• gittuf / gittuf
  A security layer for Git repositories
  ☆554Updated this week
• google / deps.dev
  Resources for the deps.dev API
  ☆351Updated this week
• evanrolfe / trayce_gui
  ☆452Updated last month
• DeepSourceCorp / globstar
  Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.
  ☆462Updated 4 months ago
• safedep / vet
  Protect against malicious open source packages 🤖
  ☆825Updated 2 weeks ago
• icann / icann-rdap
  ICANN implementation of the Registry Data Access Protocol (RDAP)
  ☆406Updated last week
• noperator / jqfmt
  like gofmt, but for jq
  ☆377Updated 3 months ago
• specfy / stack-analyser
  Extract +700 technologies from any repository. Detect Languages, SaaS, Cloud, Infrastructure, Dependencies and Services
  ☆381Updated last month
• edera-dev / styrolite
  Programmatic sandboxing tool
  ☆254Updated last week
• google / osv-scanner-action
  ☆47Updated last week
• plutov / oq
  Terminal OpenAPI Spec viewer
  ☆896Updated last month
• vet-run / vet
  vet is a command-line tool that acts as a safety net for the risky curl | bash pattern. It lets you inspect, diff against previous versio…
  ☆967Updated 2 months ago
• znscli / zns
  CLI tool for querying DNS records with readable, colored output.
  ☆202Updated last month
• reproducible-containers / diffoci
  diff for Docker and OCI container images
  ☆513Updated last week
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆119Updated 2 weeks ago
• Checkmarx / 2ms
  Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
  ☆137Updated this week
• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆235Updated last week
• cachix / secretspec
  Declarative secrets, every environment, any provider.
  ☆306Updated this week
• facebook / dotslash
  Simplified executable deployment
  ☆766Updated last week
• qpoint-io / qtap
  Qtap: An eBPF agent that captures pre-encrypted network traffic, providing rich context about egress connections and their originating pr…
  ☆1,358Updated last week
• kexa-io / Kexa
  Kexa's simple rules (Open Source) make it easy to monitoring and manage alerting of your entire cloud. With various monitoring and alerti…
  ☆322Updated last week
• jdx / hk
  git hooks and project lints
  ☆512Updated last week
• dvershinin / gixy
  NGINX configuration static analyzer
  ☆1,097Updated 2 weeks ago
• m-ahmed-elbeskeri / Starguard
  CLI that detects fake-star campaigns, dependency hijacks, licence red-flags and other signs of repository risk. Inspired by the “4.5 mill…
  ☆408Updated 4 months ago
• yokecd / yoke
  Kubernetes Package Management as Code; infrastructure as code, but actually.
  ☆653Updated last week