OSV-SCALIBR: A library for Software Composition Analysis
☆580Mar 25, 2026Updated this week
Alternatives and similar repositories for osv-scalibr
Users that are interested in osv-scalibr are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆8,607Updated this week
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆355Mar 17, 2026Updated last week
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆473Updated this week
- Format agnostic SBOM tooling☆135Nov 20, 2025Updated 4 months ago
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆175Jan 9, 2026Updated 2 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- #supply #chain #attack #detection☆646Updated this week
- Open source vulnerability DB and triage service.☆2,538Updated this week
- A collection of Turbo Intruder scripts.☆71Feb 1, 2025Updated last year
- Autonomous AI C2☆33Jul 23, 2024Updated last year
- Unauthenticated enumeration of AWS IAM Roles.☆26Sep 7, 2025Updated 6 months ago
- ☆87Updated this week
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated 11 months ago
- Security tool against dependency typosquatting attacks☆55Updated this week
- Resources for the deps.dev API☆389Mar 23, 2026Updated last week
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆608Feb 10, 2026Updated last month
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,462Updated this week
- Open Source Package Analysis☆869Feb 27, 2026Updated last month
- A place to systematically store software bill of materials (SBOM) documents.☆50Jun 1, 2023Updated 2 years ago
- OpenVEX Specification☆171Jan 16, 2026Updated 2 months ago
- 🔎 Static code analysis engine to find security issues in code.☆2,322Updated this week
- Gram is Klarna's own threat model diagramming tool☆332Updated this week
- eBPF Security Monitoring Agent Based on Aya☆42Updated this week
- ☆66Feb 18, 2026Updated last month
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- ☆18Feb 2, 2026Updated last month
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆42Dec 12, 2024Updated last year
- A library for intercepting system calls☆103Jan 5, 2025Updated last year
- Burp Suite extension for testing Passkey systems.☆75Apr 1, 2025Updated 11 months ago
- Open Source Vulnerability schema.☆242Updated this week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Jan 2, 2025Updated last year
- Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …☆189Updated this week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆103Apr 23, 2024Updated last year
- An SBOM query language and associated utilities☆55Jan 22, 2024Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆112Feb 28, 2026Updated last month
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆37Jan 1, 2024Updated 2 years ago
- Automated vulnerability discovery and annotation☆68Jul 26, 2024Updated last year
- Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…☆41May 7, 2023Updated 2 years ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆235Feb 6, 2025Updated last year
- A very simple open source implementation of Google's Project Naptime☆185Mar 27, 2025Updated last year
- Securing open-source package ecosystems by originating, validating, and augmenting build attestations.☆685Updated this week