snyk / snyk-maven-pluginLinks
Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
☆82Updated last month
Alternatives and similar repositories for snyk-maven-plugin
Users that are interested in snyk-maven-plugin are comparing it to the libraries listed below
Sorting:
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆351Updated 2 weeks ago
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆68Updated 2 weeks ago
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆212Updated 3 years ago
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆72Updated 2 weeks ago
- Java web and command line applications demonstrating various security topics☆237Updated last week
- Java Agent which mitigates deserialisation attacks by making certain classes unserializable☆192Updated 9 years ago
- The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…☆87Updated 4 years ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆100Updated 2 weeks ago
- POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.☆26Updated 2 months ago
- a FindBugs/SpotBugs plugin for doing static code analysis for java code bases☆168Updated last week
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆42Updated 5 years ago
- ☆120Updated 8 months ago
- Java/JVM implementation of the package url spec☆44Updated last month
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆48Updated 5 months ago
- Self-updating OWASP DependencyCheck Database Server☆16Updated 8 months ago
- Plugin for supporting SPDX in a Maven build.☆58Updated last week
- The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens☆89Updated 3 weeks ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆86Updated 8 years ago
- OWASP Security Logging library for Java☆119Updated 2 years ago
- Look-Ahead Java Deserialization Library☆421Updated 5 years ago
- Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…☆51Updated 3 weeks ago
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆154Updated 2 weeks ago
- Tool to sanitize data from Java heap dumps.☆148Updated 3 weeks ago
- Apache Maven Dependency Analyzer☆41Updated last week
- The SpotBugs Plugin for IntelliJ IDEA☆84Updated 9 months ago
- The core framework of jQAssistant providing the infrastructure for scanners, rules, analysis and reports.☆24Updated last year
- Apache Maven Indexer☆68Updated last week
- Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determ…☆541Updated 2 years ago
- SpotBugs plugin for SonarQube☆377Updated last week
- Maven plugin to download and collect license files from project dependencies.☆113Updated last week