Alternatives and similar repositories for ai-codewise

Users that are interested in ai-codewise are comparing it to the libraries listed below

• deislabs / image-layer-provenance
  Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
  ☆43Updated last year
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated last year
• step-security / agent
  Purpose-built security agent for hosted runners
  ☆36Updated last month
• hupe1980 / cdk-threagile
  Agile Threat Modeling as Code
  ☆13Updated 2 years ago
• slsa-framework / slsa-github-generator-go
  ☆57Updated 3 years ago
• port-labs / port-agent
  ☆14Updated this week
• turbot / steampipe-plugin-prometheus
  Use SQL to instantly query Prometheus metrics, alerts, labels and more. Open source CLI. No DB required.
  ☆18Updated 2 weeks ago
• ossf / ossf-landscape
  ☆29Updated last week
• chainguard-dev / cosign-ecs-verify
  Lambda function for verifying signed images in ECS
  ☆33Updated last year
• sigstore / protobuf-specs
  Sigstore's Protocol Buffer specifications
  ☆33Updated this week
• turbot / steampipe-samples
  Examples, samples, snippets and scripts to use with Steampipe.
  ☆52Updated 11 months ago
• turbot / steampipe-plugin-gcp
  Use SQL to instantly query GCP resources across regions, projects and organizations. Open source CLI. No DB required.
  ☆43Updated 2 weeks ago
• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆16Updated this week
• kusaridev / spector
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆31Updated 2 months ago
• ossf / toolbelt
  ☆20Updated 2 weeks ago
• turbot / steampipe-plugin-code
  Use SQL to instantly query secrets and more from source code. Open source CLI. No DB required.
  ☆17Updated 2 weeks ago
• turbot / steampipe-plugin-sdk
  Steampipe Plugin SDK is a simple abstraction layer to write a Steampipe plugin. Plugins automatically work across all engine types includ…
  ☆37Updated this week
• omnibor / spec
  A draft standard for communicating a cryptographic record of build inputs for software artifacts.
  ☆26Updated 2 months ago
• aquasecurity / cfsec
  Static analysis for CloudFormation templates to identify common misconfiguration
  ☆57Updated 3 years ago
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆79Updated 9 months ago
• spacelift-io / spacelift-helm-charts
  ☆13Updated 2 weeks ago
• turbot / steampipe-mod-github-sherlock
  Interrogate your GitHub resources with the help of the world's greatest detectives: Powerpipe + Steampipe + Sherlock.
  ☆39Updated 8 months ago
• kubernetes-sigs / tejolote
  A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
  ☆63Updated last week
• interlynk-io / sbommv
  SBOM Move - Automate build and transfer of SBOMs across systems
  ☆21Updated this week
• philips-labs / slsa-provenance-action
  Github Action implementation of SLSA Provenance Generation
  ☆48Updated this week
• tokenetes / tokenetes
  Transaction Tokens Service
  ☆43Updated last month
• chainguard-dev / darkfiles
  Darkfiles finds orphaned files in container images and makes them to bad deeds
  ☆42Updated 2 years ago
• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆35Updated last month
• RafaySystems / brave
  BRAVE (Bare Metal Replication And Virtualization Environment)
  ☆39Updated last year
• edgebitio / edgebit-agent
  Linux agent used to submit realtime SBOMs and dependency usage information to EdgeBit
  ☆14Updated 5 months ago