snyk / snyk-maven-plugin
Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
☆79Updated 7 months ago
Alternatives and similar repositories for snyk-maven-plugin:
Users that are interested in snyk-maven-plugin are comparing it to the libraries listed below
- The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…☆87Updated 3 years ago
- POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.☆23Updated 3 years ago
- Basic Snyk CLI plugin for Gradle support☆26Updated 2 weeks ago
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆316Updated 2 weeks ago
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆63Updated last week
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆68Updated 3 months ago
- Identify vulnerable libraries in Maven dependencies☆46Updated 2 years ago
- ☆114Updated 9 months ago
- Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Lifecycle.☆78Updated last week
- Java web and command line applications demonstrating various security topics☆237Updated last week
- Basic Snyk CLI plugin for Maven support☆10Updated this week
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 4 years ago
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆141Updated last week
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆92Updated last week
- Self-updating OWASP DependencyCheck Database Server☆16Updated 3 weeks ago
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆208Updated 2 years ago
- The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens☆85Updated this week
- OWASP Foundation Web Respository☆13Updated 7 months ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆44Updated 3 months ago
- Plugin for supporting SPDX in a Maven build.☆56Updated 2 weeks ago
- a FindBugs/SpotBugs plugin for doing static code analysis for java code bases☆158Updated this week
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 9 months ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆83Updated 7 years ago
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆210Updated 6 months ago
- Plugin for doing static analysis in Intellij using PMD☆71Updated 4 months ago
- Java Agent which mitigates deserialisation attacks by making certain classes unserializable☆189Updated 8 years ago
- Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…☆51Updated this week
- Apache Maven Dependency Analyzer☆42Updated this week
- The SpotBugs Plugin for IntelliJ IDEA☆76Updated 3 weeks ago
- AppMap client agent for Java☆84Updated last week