Alternatives and similar repositories for cli:

Users that are interested in cli are comparing it to the libraries listed below

• quay / clair
  Vulnerability Static Analysis for Containers
  ☆10,452Updated this week
• google / osv-scanner
  Vulnerability scanner written in Go which uses the data provided by https://osv.dev
  ☆6,373Updated this week
• anchore / anchore-engine
  A service that analyzes docker images and scans for vulnerabilities
  ☆1,587Updated last year
• aquasecurity / trivy
  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
  ☆24,373Updated this week
• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆3,740Updated this week
• anchore / grype
  A vulnerability scanner for container images and filesystems
  ☆9,243Updated this week
• anchore / syft
  CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  ☆6,491Updated this week
• ajinabraham / nodejsscan
  nodejsscan is a static security code scanner for Node.js applications.
  ☆2,416Updated 2 weeks ago
• google / osv.dev
  Open source vulnerability DB and triage service.
  ☆1,583Updated this week
• hashicorp / waypoint
  A tool to build, deploy, and release any application on any platform.
  ☆4,747Updated last year
• hadolint / hadolint
  Dockerfile linter, validate inline bash, written in Haskell
  ☆10,602Updated last month
• semgrep / semgrep
  Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
  ☆10,898Updated this week
• ossf / scorecard
  OpenSSF Scorecard - Security health metrics for Open Source
  ☆4,727Updated this week
• goodwithtech / dockle
  Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
  ☆2,821Updated last week
• falcosecurity / falco
  Cloud Native Runtime Security
  ☆7,524Updated this week
• hashicorp / boundary
  Boundary enables identity-based access management for dynamic infrastructure.
  ☆3,880Updated this week
• docker / docker-bench-security
  The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in productio…
  ☆9,226Updated 2 months ago
• open-policy-agent / opa
  Open Policy Agent (OPA) is an open source, general-purpose policy engine.
  ☆9,864Updated this week
• renovatebot / renovate
  Home of the Renovate CLI: Cross-platform Dependency Automation by Mend.io
  ☆18,147Updated this week
• containers / buildah
  A tool that facilitates building OCI images.
  ☆7,560Updated this week
• getsops / sops
  Simple and flexible tool for managing secrets
  ☆17,524Updated this week
• sigstore / cosign
  Code signing and transparency for containers and binaries
  ☆4,647Updated this week
• jeremylong / DependencyCheck
  OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependen…
  ☆6,638Updated this week
• aquasecurity / tfsec
  Tfsec is now part of Trivy
  ☆6,746Updated this week
• concourse / concourse
  Concourse is a container-based continuous thing-doer written in Go.
  ☆7,474Updated this week
• grafana / k6
  A modern load testing tool, using Go and JavaScript - https://k6.io
  ☆26,499Updated this week
• GoogleContainerTools / kaniko
  Build Container Images In Kubernetes
  ☆15,094Updated this week
• aquasecurity / kube-bench
  Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
  ☆7,186Updated this week
• inspec / inspec
  InSpec: Auditing and Testing Framework
  ☆2,874Updated this week