pmckeown / dependency-track-maven-plugin

Related projects ⓘ

Alternatives and complementary repositories for dependency-track-maven-plugin

• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆81Updated this week
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆298Updated last week
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆62Updated this week
• jenkinsci / dependency-track-plugin
  Main repository for the official Dependency-Track Jenkins plugin
  ☆44Updated 3 weeks ago
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆206Updated 2 years ago
• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆78Updated 2 months ago
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆22Updated 5 months ago
• eclipse / jbom
  ☆111Updated 4 months ago
• DependencyTrack / frontend
  Frontend UI for Dependency-Track
  ☆105Updated last week
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated this week
• jeremylong / Open-Vulnerability-Project
  Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…
  ☆121Updated last week
• SonarSource / sonar-scanner-maven
  SonarQube Scanner for Maven
  ☆147Updated this week
• augustd / owasp-security-logging
  OWASP Security Logging library for Java
  ☆115Updated 11 months ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆47Updated this week
• OWASP / www-project-csrfguard
  The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens
  ☆81Updated this week
• CycloneDX / cyclonedx-gradle-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
  ☆159Updated last week
• de-jcup / eclipse-jenkins-editor
  Jenkins Editor - A eclipse plugin to edit "Jenkinsfile" files
  ☆45Updated 3 weeks ago
• spdx / spdx-maven-plugin
  Plugin for supporting SPDX in a Maven build.
  ☆44Updated last week
• kokuwaio / helm-maven-plugin
  Simple plugin to package helm charts
  ☆82Updated this week
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆61Updated last week
• spotbugs / sonar-findbugs
  SpotBugs plugin for SonarQube
  ☆357Updated this week
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆69Updated last year
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆45Updated last year
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆129Updated last week
• VinodAnandan / sonar-pitest
  ☆43Updated 4 years ago
• dependency-check / dependency-check-sonar-plugin
  Integrates Dependency-Check reports into SonarQube
  ☆598Updated this week
• sigstore / sigstore-java
  java clients for sigstore
  ☆39Updated this week
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 4 months ago
• getappmap / appmap-java
  AppMap client agent for Java
  ☆82Updated 2 months ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
  ☆39Updated this week