OSV-SCALIBR: A library for Software Composition Analysis
☆596May 6, 2026Updated last week
Alternatives and similar repositories for osv-scalibr
Users that are interested in osv-scalibr are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆10,117Updated this week
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆358Apr 10, 2026Updated last month
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆507Updated this week
- Format agnostic SBOM tooling☆137Nov 20, 2025Updated 5 months ago
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆180Jan 9, 2026Updated 4 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- #supply #chain #attack #detection☆653May 5, 2026Updated last week
- Open source vulnerability DB and triage service.☆2,657Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆608Feb 10, 2026Updated 3 months ago
- A collection of Turbo Intruder scripts.☆72Feb 1, 2025Updated last year
- Autonomous AI C2☆33Jul 23, 2024Updated last year
- Resources for the deps.dev API☆403Apr 22, 2026Updated 3 weeks ago
- ☆87Mar 30, 2026Updated last month
- Security tool against dependency typosquatting attacks☆56Updated this week
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Unauthenticated enumeration of AWS IAM Roles.☆26Apr 18, 2026Updated 3 weeks ago
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,489Updated this week
- A place to systematically store software bill of materials (SBOM) documents.☆50Jun 1, 2023Updated 2 years ago
- Open Source Package Analysis☆879Feb 27, 2026Updated 2 months ago
- OpenVEX Specification☆177Jan 16, 2026Updated 3 months ago
- 🔎 Static code analysis engine to find security issues in code.☆2,508Updated this week
- Gram is Klarna's own threat model diagramming tool☆334Updated this week
- eBPF Security Monitoring and Sandboxing Agent Based on Aya☆44Apr 30, 2026Updated last week
- ☆18Feb 2, 2026Updated 3 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆76Updated this week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆42Dec 12, 2024Updated last year
- A library for intercepting system calls☆103Jan 5, 2025Updated last year
- Burp Suite extension for testing Passkey systems.☆75Apr 1, 2025Updated last year
- Open Source Vulnerability schema.☆247Updated this week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆143Jan 2, 2025Updated last year
- Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …☆193Updated this week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆103Apr 23, 2024Updated 2 years ago
- An SBOM query language and associated utilities☆56Jan 22, 2024Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆37Jan 1, 2024Updated 2 years ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆113Feb 28, 2026Updated 2 months ago
- Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…☆42May 7, 2023Updated 3 years ago
- Automated vulnerability discovery and annotation☆67Jul 26, 2024Updated last year
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆235Feb 6, 2025Updated last year
- A very simple open source implementation of Google's Project Naptime☆187Mar 27, 2025Updated last year
- Securing open-source package ecosystems by originating, validating, and augmenting build attestations.☆695Updated this week