microsoft / bandit-sarif-formatter

Related projects ⓘ

Alternatives and complementary repositories for bandit-sarif-formatter

• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆71Updated 3 weeks ago
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆41Updated 7 months ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆109Updated 11 months ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated last year
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆133Updated this week
• anthonyharrison / sbom4python
  A tool to generate a SBOM (Software Bill of Materials) for an installed Python module
  ☆26Updated last month
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 8 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• usnistgov / swid-tools
  ☆13Updated last month
• snyk / snyk-python-plugin
  Basic Snyk CLI plugin for Python support
  ☆18Updated 3 months ago
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated last year
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆19Updated last year
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆111Updated last month
• Ericsson / secure_coding_one_stop_shop_for_python
  Secure Coding in Python
  ☆19Updated last month
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆91Updated this week
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆264Updated this week
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆65Updated last month
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆46Updated last month
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆185Updated this week
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆232Updated this week
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆22Updated this week
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆71Updated last week
• pypi / inspector
  🕵️ File browser for distributions on PyPI
  ☆88Updated last week
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆58Updated 3 weeks ago
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆70Updated this week
• OWASP / OpenCRE
  ☆80Updated this week
• RedHatProductSecurity / advisory-parser
  A library for parsing security advisories
  ☆13Updated 2 months ago
• GeekMasher / security-codeql
  CodeQL Security Queries
  ☆21Updated last week
• ochronasec / ochrona-cli
  A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
  ☆52Updated last year
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆19Updated last year