xeol-io / xeolLinks
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
☆404Updated last week
Alternatives and similar repositories for xeol
Users that are interested in xeol are comparing it to the libraries listed below
Sorting:
- Evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more☆485Updated this week
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆492Updated last week
- A security layer for Git repositories☆537Updated last week
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆153Updated this week
- Software Supply Chain Security Platform☆348Updated this week
- Evaluate source control (GitHub) security posture☆252Updated 2 years ago
- Enrich SBOMs with data from third party services☆188Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆232Updated last year
- boostsecurityio/poutine☆309Updated last week
- A universal SBOM representation in protocol buffers☆297Updated this week
- Inspect certificate authorities in container images☆236Updated 2 weeks ago
- An open source, cloud-native security to protect everything from build to runtime☆311Updated this week
- A tool to create, transform and attest VEX metadata☆151Updated last week
- Open source compliance tool for development platforms.☆288Updated last year
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆815Updated 4 months ago
- OpenVEX Specification☆156Updated 2 months ago
- Search an SBOM for licenses and the packages they belong to