soprasteria / sonar-reportLinks
Generates an html report from SonarQube
☆102Updated last year
Alternatives and similar repositories for sonar-report
Users that are interested in sonar-report are comparing it to the libraries listed below
Sorting:
- Generates analysis reports from SonarQube web API.☆582Updated last week
- Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive d…☆158Updated last week
- Integrates OWASP Zed Attack Proxy reports into SonarQube☆72Updated 4 months ago
- A comprehensive list of software composition analysis tools.☆156Updated last month
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆153Updated 2 weeks ago
- Integrates Dependency-Check reports into SonarQube☆675Updated last month
- Deprecated; please use fcli instead☆27Updated 3 months ago
- A utility to (re-)import findings and language data into DefectDojo☆43Updated last year
- SonarQube Licensecheck Plugin☆175Updated this week
- ☆548Updated last week
- Checkmarx Scan and Result Orchestration☆99Updated last week
- Docker image for SonarScanner CLI☆200Updated this week
- Main repository for the official Dependency-Track Jenkins plugin☆50Updated last week
- A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.☆108Updated last year
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆428Updated 2 weeks ago
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…☆110Updated last year
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆75Updated last week
- A VS Code Extension for Trivy☆154Updated last week
- A collection of diagramming tools to help create DevOps/DevSecOps reference architectures��☆78Updated 2 years ago
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆195Updated this week
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆856Updated 2 years ago
- Publishes BOMs to Dependency-Track from GitHub Actions☆56Updated last year
- secureCodeBox (SCB) - continuous secure delivery out of the box☆927Updated this week
- OpenID Connect (OIDC) Plugin for SonarQube☆123Updated 6 months ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆592Updated 8 months ago
- A Trivy plugin that converts JSON report to SonarQube format☆43Updated 10 months ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆844Updated last week
- Frontend UI for Dependency-Track☆133Updated this week
- Software Component Verification Standard (SCVS)☆150Updated 8 months ago
- Scanning and analysis for Black Duck SCA products.☆187Updated this week