xeol-io / xeolLinks
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
☆404Updated this week
Alternatives and similar repositories for xeol
Users that are interested in xeol are comparing it to the libraries listed below
Sorting:
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆491Updated last week
- Software Supply Chain Security Platform☆344Updated last week
- Open source compliance tool for development platforms.☆288Updated last year
- Evaluate source control (GitHub) security posture☆252Updated 2 years ago
- A security layer for Git repositories☆536Updated this week
- Evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more☆476Updated last week
- boostsecurityio/poutine☆308Updated this week
- Enrich SBOMs with data from third party services☆181Updated 2 weeks ago
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆859Updated last week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆813Updated 4 months ago
- An open source, cloud-native security to protect everything from build to runtime☆308Updated this week
- Search an SBOM for licenses and the packages they belong to☆98Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆230Updated 11 months ago
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆148Updated this week
- A tool to create, transform and attest VEX metadata☆149Updated this week
- Runtime Security Solution for your CI/CD Pipeline☆108Updated last month
- Inspect certificate authorities in container images☆236Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆574Updated 4 months ago
- By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps…☆205Updated 2 years ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- SBOM Assess - Evaluate SBOM quality and compliance☆221Updated last week
- OpenVEX Specification☆155Updated 2 months ago
- Format agnostic SBOM tooling☆112Updated last week
- A universal SBOM representation in protocol buffers☆296Updated 2 weeks ago
- Chalk allows you to follow code from development, through builds and into production.☆388Updated this week
- Protect against malicious open source packages 🤖☆627Updated this week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated 2 weeks ago
- BadRobot - Operator Security Audit Tool☆221Updated 2 weeks ago
- Throw a tag at it and it comes back with a checksum.☆141Updated last week
- Flowpipe is a cloud scripting engine. Automation and workflow to connect your clouds to the people, systems and data that matters.☆431Updated last week