snyk / snyk-maven-plugin
Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
☆77Updated last month
Related projects: ⓘ
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆287Updated last week
- The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…☆84Updated 2 years ago
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆61Updated this week
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆61Updated 8 months ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆80Updated this week
- Java/JVM implementation of the package url spec☆22Updated 3 months ago
- Basic Snyk CLI plugin for Gradle support☆24Updated last week
- ☆110Updated 3 months ago
- Self-updating OWASP DependencyCheck Database Server☆15Updated 2 months ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆42Updated 3 weeks ago
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 3 years ago
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆206Updated last year
- Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…☆110Updated 3 weeks ago
- Java web and command line applications demonstrating various security topics�☆235Updated 2 weeks ago
- Identify vulnerable libraries in Maven dependencies☆45Updated last year
- The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens☆78Updated 2 weeks ago
- Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Nexus IQ Server.☆75Updated last week
- Java implementation of an AJP13 protocol client (aka Apache JServ), allowing to send requests to a servlet container using this protocol.☆30Updated 5 months ago
- OWASP Foundation Web Respository☆12Updated last month
- A tiny Java agent that blocks attacks against unsafe deserialization☆82Updated 6 years ago
- The core framework of jQAssistant providing the infrastructure for scanners, rules, analysis and reports.☆23Updated 2 months ago
- POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.☆19Updated 3 years ago
- Checkmarx Scan and Result Orchestration☆88Updated this week
- Maven Mojo Plug-In to generate reports based on the SpotBugs Analyzer☆73Updated last week
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆59Updated this week
- Evaluation Framework for Dependency Analysis (EFDA)☆40Updated 2 years ago
- Allow Nexus users to test their applications against the Snyk vulnerability database☆17Updated this week
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 3 months ago
- AppMap client agent for Java☆82Updated 2 weeks ago
- Plugin for doing static analysis in Intellij using PMD☆67Updated last week