ossf-cve-benchmark / ossf-cve-benchmark

The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.
141Updated 7 months ago

Related projects

Alternatives and complementary repositories for ossf-cve-benchmark