Alternatives and similar repositories for nexus-snyk-security-plugin:

Users that are interested in nexus-snyk-security-plugin are comparing it to the libraries listed below

• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆79Updated 5 months ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆84Updated this week
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆305Updated last month
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 2 years ago
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆62Updated last week
• aquasecurity / vuln-list-update
  ☆179Updated this week
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆112Updated last year
• SAP / project-kb
  Home page of project "KB"
  ☆117Updated last month
• aquasecurity / vuln-list
  NVD, Ubuntu, Alpine
  ☆416Updated this week
• blackducksoftware / detect
  Scanning and analysis for Black Duck SCA products.
  ☆166Updated this week
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆129Updated this week
• aboutcode-org / univers
  Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…
  ☆32Updated 3 months ago
• spdx / spdx-maven-plugin
  Plugin for supporting SPDX in a Maven build.
  ☆48Updated this week
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated last month
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆24Updated 7 months ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆113Updated 3 months ago
• jeremylong / Open-Vulnerability-Project
  Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…
  ☆133Updated this week
• github / vscode-codeql-starter
  Starter workspace to use with the CodeQL extension for Visual Studio Code.
  ☆508Updated this week
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆127Updated 2 years ago
• scanoss / sbom-workbench
  The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.
  ☆47Updated last week
• alipay / ant-application-security-testing-benchmark
  xAST评价体系，让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
  ☆366Updated last week
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆315Updated 9 months ago
• ASTTeam / SAST
  《深入理解SAST静态应用安全测试》Static Application Security Testing.
  ☆330Updated 9 months ago
• spdx / tools
  SPDX Tools
  ☆132Updated last year
• jenkinsci / snyk-security-scanner-plugin
  Test and monitor your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Snyk.
  ☆58Updated 5 months ago
• blackducksoftware / hub
  Black Duck Docker Orchestration Files/Documentation
  ☆121Updated last month
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆28Updated 6 years ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆47Updated 3 weeks ago
• githubsatelliteworkshops / codeql
  GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
  ☆209Updated 4 months ago
• GitHubSecurityLab / gh-qldb
  CodeQL database manager
  ☆48Updated last year