Alternatives and similar repositories for codemodder-specs:

Users that are interested in codemodder-specs are comparing it to the libraries listed below

• pixee / upload-tool-results-action
  A GitHub Action that allows Pixee to fix issues found by other code scanners
  ☆14Updated last month
• pixee / python-security
  Security toolkit for the Python community
  ☆14Updated last week
• pixee / codemodder-java
  a framework for building java codemods
  ☆40Updated this week
• pixee / pixee-cli
  Implementation of the Pixee CLI
  ☆31Updated this week
• pixee / java-security-toolkit
  A set of security APIs meant to help secure Java code
  ☆19Updated 2 months ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆86Updated this week
• eclipse-jbom / jbom
  ☆113Updated 8 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆158Updated last week
• advanced-security / maven-dependency-submission-action
  GitHub Action for submitting Maven dependencies
  ☆48Updated 4 months ago
• jeremylong / open-vulnerability-cli
  A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…
  ☆137Updated this week
• CycloneDX / cyclonedx-gradle-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
  ☆175Updated last week
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆74Updated this week
• oracle / macaron
  Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …
  ☆144Updated this week
• yahoo / GitHub-Security-Alerts-Workflow
  Automation to Incorporate GitHub Security Alerts Into your Business Workflow
  ☆23Updated last year
• sonatype-nexus-community / scan-gradle-plugin
  Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Lifecycle.
  ☆78Updated last month
• gradle / github-dependency-graph-gradle-plugin
  Gradle Plugin for Extracting Dependency Information to send to GitHub
  ☆88Updated 2 weeks ago
• jreleaser / release-action
  GitHub Action for JReleaser
  ☆37Updated last month
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆26Updated 8 months ago
• mikepenz / gradle-dependency-submission
  Calculates dependencies for a Gradle build-target and submits the list to the Dependency Submission API
  ☆80Updated last year
• jvm-repo-rebuild / reproducible-central
  Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository
  ☆108Updated this week
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆79Updated this week
• MediaMarktSaturn / technolinator
  GitHub app for SBOM creation using cdxgen and upload to Dependency-Track
  ☆17Updated this week
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆16Updated 2 months ago
• ryandens / jlink-gradle-plugin
  A set of Gradle plugins that enable the use of jlink in Gradle builds
  ☆17Updated this week
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆72Updated 3 months ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated last year
• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆33Updated this week
• interlynk-io / sbomqs
  SBOM quality score - Quality metrics for your sboms
  ☆193Updated this week
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆132Updated 2 years ago
• CycloneDX / cyclonedx-property-taxonomy
  A taxonomy of all official CycloneDX property namespaces and names
  ☆15Updated 2 months ago