vendorsec / mvspLinks
Minimum Viable Secure Product mvsp.dev
☆202Updated 9 months ago
Alternatives and similar repositories for mvsp
Users that are interested in mvsp are comparing it to the libraries listed below
Sorting:
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆177Updated 10 months ago
- App that simplifies building decision trees to model adverse scenarios☆218Updated last year
- Security policies for Tailscale☆303Updated 3 weeks ago
- A tool to check the security settings of Github Organizations.☆72Updated 2 years ago
- Open Source Software Secure Supply Chain Framework☆236Updated 2 years ago
- boostsecurityio/poutine☆332Updated last week
- ☆123Updated 3 weeks ago
- Segment's Threat Modeling training for our engineers☆245Updated 4 years ago
- Documenting your Threat Models with HCL☆433Updated this week
- The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed co…☆222Updated last year
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆129Updated 8 months ago
- ☆114Updated last month
- Gram is Klarna's own threat model diagramming tool☆325Updated last week
- Awesome secure by default libraries to help you eliminate bug classes!☆700Updated 5 months ago
- A Software as a Service (SaaS) log collection framework.☆178Updated last week
- The security workflow engine!☆122Updated last week
- OCSF Documentation☆141Updated 2 weeks ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆111Updated last month
- An open-source collection of API key rotation tutorials.☆74Updated last month
- threatspec - continuous threat modeling, through code☆368Updated 4 years ago
- The Elevation of Privilege Threat Modeling Game☆336Updated last year
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆211Updated this week
- ☆110Updated last week
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆165Updated this week
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆192Updated 2 weeks ago
- OpenVEX Specification☆159Updated 4 months ago
- 🖇️ STRIDE vs. ASVS equivalence table☆77Updated last year
- This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.☆139Updated 3 years ago
- Stakeholder-Specific Vulnerability Categorization☆164Updated this week
- Secure Software Development Fundamentals courses (from the OpenSSF Best Practices WG)☆196Updated 2 months ago