Protect against malicious open source packages 🤖
☆1,033May 11, 2026Updated last week
Alternatives and similar repositories for vet
Users that are interested in vet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Apr 1, 2023Updated 3 years ago
- PMG protects developers, AI agents from malicious open source packages using proxy, sandbox and SafeDep's threat intelligence feed.☆277Updated this week
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆230Apr 17, 2026Updated last month
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆869Mar 28, 2025Updated last year
- A universal SBOM representation in protocol buffers☆324Updated this week
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆147Jan 28, 2024Updated 2 years ago
- ☆69Jul 18, 2025Updated 10 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆242Aug 13, 2024Updated last year
- poutine, a supply chain vulnerability scanner for build pipelines☆452May 6, 2026Updated 2 weeks ago
- Software Supply Chain Security Platform☆399Updated this week
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆530Updated this week
- Enrich SBOMs with data from third party services☆226Apr 9, 2026Updated last month
- Generate xBOMs enriched with AI, SaaS, Crypto and more using Static Code Analysis☆30Jan 22, 2026Updated 3 months ago
- 🔴🟡🟢 The Amazing Multipurpose Policy Engine (and L)☆47Updated this week
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,652Updated this week
- A vulnerability scanner for container images and filesystems☆12,217Updated this week
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆69Nov 27, 2025Updated 5 months ago
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆10,210Updated this week
- 🔎 Static code analysis engine to find security issues in code.☆2,552May 13, 2026Updated last week
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆507May 12, 2026Updated last week
- Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on p…☆5,637Apr 16, 2026Updated last month
- #supply #chain #attack #detection☆654May 11, 2026Updated last week
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆129May 12, 2026Updated last week
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆72Jun 25, 2025Updated 10 months ago
- Automation tool for Windows Deception Host Burn-In☆85Dec 4, 2024Updated last year
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆1,158Updated this week
- Resources for the deps.dev API☆403Apr 22, 2026Updated 3 weeks ago
- GitHub App to set and enforce security policies☆1,416May 11, 2026Updated last week
- The security workflow engine!☆138Nov 20, 2025Updated 6 months ago
- Find, validate, and map the impact of leaked secrets across your stack. Revoke fast. 950+ rules.☆1,109May 12, 2026Updated last week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,944Updated this week
- A security layer for Git repositories☆618Updated this week
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Machine-readable specification for the attestation of security-relevant data.☆75May 11, 2026Updated last week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆610Feb 10, 2026Updated 3 months ago
- OpenSSF Scorecard - Security health metrics for Open Source☆5,439Updated this week
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆665Updated this week
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆283Apr 27, 2026Updated 3 weeks ago
- ☆20Apr 10, 2025Updated last year
- SDLC evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more☆551Updated this week