Alternatives and similar repositories for nexus-snyk-security-plugin

Users that are interested in nexus-snyk-security-plugin are comparing it to the libraries listed below

• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆81Updated 2 months ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 3 years ago
• OWASP-Benchmark / BenchmarkJava
  OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…
  ☆717Updated this week
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆63Updated this week
• blackducksoftware / detect
  Scanning and analysis for Black Duck SCA products.
  ☆175Updated this week
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆207Updated 2 years ago
• aquasecurity / vuln-list-update
  ☆182Updated this week
• jaxley / python-fortify
  Read and write Fortify Project (FPR) files in Python
  ☆40Updated 5 years ago
• aquasecurity / vuln-list
  NVD, Ubuntu, Alpine
  ☆430Updated this week
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆323Updated last month
• SAP / project-kb
  Home page of project "KB"
  ☆126Updated 2 months ago
• momosecurity / mosec-maven-plugin
  用于检测maven项目的第三方依赖组件是否存在安全漏洞。
  ☆103Updated 3 years ago
• spdx / spdx-maven-plugin
  Plugin for supporting SPDX in a Maven build.
  ☆56Updated last month
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated 5 months ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆93Updated this week
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆133Updated 2 years ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆51Updated this week
• baidu-security / openrasp-testcases
  OpenRASP 漏洞测试环境
  ☆308Updated last year
• githubsatelliteworkshops / codeql
  GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
  ☆210Updated 8 months ago
• Marcono1234 / codeql-java-queries
  Personal CodeQL queries
  ☆64Updated 2 weeks ago
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆96Updated 2 weeks ago
• mwielgoszewski / python-fortify
  Read and write Fortify Project (FPR) files in Python
  ☆10Updated 10 years ago
• scanoss / sbom-workbench
  The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.
  ☆53Updated last week
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆28Updated 6 years ago
• wimkeir / graft
  A static analysis tool for Java programs, based on the theory of code property graphs.
  ☆18Updated 2 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆87Updated 4 months ago
• hi-KK / VulDB_Spider
  vulnerability database spider 爬取NVD、CNVD、CNNVD等漏洞数据库
  ☆223Updated 4 years ago
• Contrast-Security-OSS / java-sarif
  POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.
  ☆23Updated 4 years ago
• CycloneDX / sbom-comparator
  Lockheed Martin developed utility to compare two CycloneDX SBOMs
  ☆19Updated 3 years ago
• cn-panda / logbackRceDemo
  The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…
  ☆87Updated 3 years ago