sonatype-nexus-community / ahabLinks
ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
☆68Updated last year
Alternatives and similar repositories for ahab
Users that are interested in ahab are comparing it to the libraries listed below
Sorting:
- Grype vulnerability check plugin for Visual Studio Code☆23Updated 10 months ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- The Auditree framework tool to run compliance control checks as unit tests.☆71Updated last year
- a tool to audit the istio service mesh☆173Updated 4 years ago
- ☆30Updated last week
- Compare vulnerability scanners results (to make them better!)☆23Updated last week
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated last year
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 9 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆103Updated this week
- Checks whether a Linux server according to security best practices as defined in the CIS Distribution-Independent Linux Benchmark☆177Updated 2 weeks ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- Simple command-line client to the Anchore Engine service☆113Updated last year
- ☆90Updated 5 months ago
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆57Updated this week
- vexctl is a tool to attest VEX impact statements☆45Updated 2 years ago
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆57Updated 10 months ago
- Sharing software supply chain security open source projects☆52Updated 2 years ago
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆64Updated last year
- Plugin for Docker CLI to support SBOM creation using Syft☆159Updated 2 months ago
- Visual Studio Code extension for writing Terrascan Rego policies☆22Updated last year
- Harbor Scanner Adapter for Anchore Engine and Enterprise☆39Updated this week
- A BOM repository server for distributing CycloneDX BOMs☆84Updated 3 months ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- Check images in your charts for vulnerabilities☆42Updated 4 months ago
- Publishes BOMs to Dependency-Track from GitHub Actions☆55Updated last year
- in-toto is a framework to secure the software supply chain.☆71Updated 9 months ago
- Runtime security plug to protect user containers☆66Updated last week
- GKE CIS 1.1.0 Benchmark InSpec Profile☆27Updated 4 years ago
- Slack alert bot for matching Github Audit Events☆10Updated 11 months ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆69Updated last month