Alternatives and similar repositories for sonar-report:

Users that are interested in sonar-report are comparing it to the libraries listed below

• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆70Updated last year
• cnescatlab / sonar-cnes-report
  Generates analysis reports from SonarQube web API.
  ☆507Updated last month
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆94Updated this week
• jenkinsci / dependency-track-plugin
  Main repository for the official Dependency-Track Jenkins plugin
  ☆47Updated last week
• magnologan / awesome-sca
  A comprehensive list of software composition analysis tools.
  ☆140Updated 9 months ago
• hysnsec / awesome-sca
  A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.
  ☆103Updated 4 months ago
• fortify-ps / fortify-integration-sonarqube
  Fortify SonarQube Plugin
  ☆22Updated 4 years ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated 10 months ago
• jeremylong / open-vulnerability-cli
  A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…
  ☆141Updated this week
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆66Updated 9 months ago
• dependency-check / dependency-check-sonar-plugin
  Integrates Dependency-Check reports into SonarQube
  ☆637Updated 3 weeks ago
• DependencyTrack / frontend
  Frontend UI for Dependency-Track
  ☆117Updated this week
• MaibornWolff / dd-import
  A utility to (re-)import findings and language data into DefectDojo
  ☆42Updated 5 months ago
• anchore / grype-vscode
  Grype vulnerability check plugin for Visual Studio Code
  ☆22Updated 3 months ago
• CycloneDX / cyclonedx-cli
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆343Updated 4 months ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆134Updated 3 weeks ago
• fortify / FortifyVulnerabilityExporter
  Export Fortify vulnerability data to GitHub, GitLab, SonarQube and more
  ☆26Updated 9 months ago
• DependencyTrack / gh-upload-sbom
  Publishes BOMs to Dependency-Track from GitHub Actions
  ☆51Updated 5 months ago
• porscheinformatik / sonarqube-licensecheck
  SonarQube Licensecheck Plugin
  ☆164Updated last week
• CycloneDX / Sunshine
  Sunshine - SBOM visualization tool
  ☆40Updated last week
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆55Updated 3 weeks ago
• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆126Updated last month
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆55Updated last year
• snyk / snyk-to-html
  export test reports from CLI to html
  ☆92Updated 4 months ago
• sleroy / sonar-slack-notifier-plugin
  SonarQube plugin for sending notifications to Slack
  ☆40Updated last year
• thinksabin / DTrackAuditor
  DTrackAuditor is the python script to faciliate usage of DependencyTrack in the CI.
  ☆10Updated last month
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆208Updated 2 years ago
• jenkinsci / snyk-security-scanner-plugin
  Test and monitor your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Snyk.
  ☆60Updated 6 months ago
• Checkmarx / ast-cli
  A CLI project wrapping application security testing (AST) APIs
  ☆46Updated this week
• anchore / anchore-cli
  Simple command-line client to the Anchore Engine service
  ☆114Updated 8 months ago