snyk / snyk-maven-plugin
Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
☆79Updated 5 months ago
Alternatives and similar repositories for snyk-maven-plugin:
Users that are interested in snyk-maven-plugin are comparing it to the libraries listed below
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆305Updated last month
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆62Updated last week
- Basic Snyk CLI plugin for Gradle support☆25Updated last month
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆68Updated last month
- The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…☆87Updated 3 years ago
- Java/JVM implementation of the package url spec☆24Updated 7 months ago
- POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.☆22Updated 3 years ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆84Updated this week
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 4 years ago
- ☆113Updated 7 months ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆44Updated last month
- Identify vulnerable libraries in Maven dependencies☆46Updated 2 years ago
- Plugin for supporting SPDX in a Maven build.☆48Updated this week
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆206Updated 2 years ago
- a FindBugs/SpotBugs plugin for doing static code analysis for java code bases☆157Updated last month
- Plugin for doing static analysis in Intellij using PMD☆72Updated 2 months ago
- Java web and command line applications demonstrating various security topics☆235Updated last week
- The core framework of jQAssistant providing the infrastructure for scanners, rules, analysis and reports.☆23Updated 6 months ago
- Self-updating OWASP DependencyCheck Database Server☆15Updated 6 months ago
- Allow Nexus users to test their applications against the Snyk vulnerability database☆17Updated last week
- Apache Maven Indexer☆67Updated this week
- Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Lifecycle.☆77Updated 3 weeks ago
- Maven Mojo Plug-In to generate reports based on the SpotBugs Analyzer☆83Updated this week
- Apache Maven Dependency Tree☆23Updated this week
- Maven plugin to download and collect license files from project dependencies.☆109Updated 2 weeks ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆83Updated 7 years ago
- Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…☆51Updated this week
- AppMap client agent for Java☆83Updated 4 months ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 7 months ago
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆209Updated 4 months ago