veracode / Veracode-Community-Projects
Collection of open source projects that include automation of common Veracode Platform tasks, new integrations, HMAC signing libraries, etc
☆74Updated 2 months ago
Alternatives and similar repositories for Veracode-Community-Projects:
Users that are interested in Veracode-Community-Projects are comparing it to the libraries listed below
- ☆524Updated this week
- Secure Software Development Fundamentals courses (from the OpenSSF Best Practices WG)☆196Updated last month
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- This project is about creating and publishing threat model examples.☆418Updated 3 years ago
- NextJS-based single-page application for completing and reviewing SAMM assessments☆72Updated 2 years ago
- Shostack's 4 Question Frame for Threat Modeling☆110Updated 3 months ago
- Checkmarx Scan Github Action☆28Updated 9 months ago
- OWASP Foundation Web Respository☆63Updated last year
- Software Component Verification Standard (SCVS)☆144Updated 3 weeks ago
- A Continuous Threat Modeling methodology☆319Updated 2 years ago
- Core model including reused documentation☆96Updated last month
- GitHub Advanced Security Policy as Code☆82Updated last week
- ☆102Updated this week
- OWASP Project Developer Guide - Document and Project Web pages☆111Updated this week
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆208Updated 2 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆171Updated 5 months ago
- A collection of diagramming tools to help create DevOps/DevSecOps reference architectures☆68Updated last year
- Security Champions Playbook v 2.1☆365Updated last year
- Examples of integrating the Snyk CLI into a CI/CD system☆87Updated 4 months ago
- threatspec - continuous threat modeling, through code☆355Updated 4 years ago
- ☆367Updated last year
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆193Updated 6 years ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆353Updated 5 months ago
- Python helper library for working with the Veracode APIs. Handles retries, pagination, and other features of the modern Veracode REST API…☆21Updated 2 weeks ago
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆193Updated last week
- OWASP Foundation Web Respository☆72Updated 3 weeks ago
- Repo to hold mapping of user-security-stories☆120Updated 6 years ago
- Sample DevSecOps pipelines (heavily biased on the "Sec") for various stacks and tools using open-source security tools and AWS native ser…☆68Updated 3 years ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆50Updated this week
- DevSecOps Pipeline using SAST + DAST and SCA tools☆63Updated 5 months ago