GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → srcclr → efda

srcclr / efda

Licence: Apache-2.0 license
Evaluation Framework for Dependency Analysis (EFDA)

Programming Languages

c
50402 projects - #5 most used programming language
shell
77523 projects
M4
1887 projects
Makefile
30231 projects
C#
18002 projects
Roff
2310 projects

Labels

dependency-analysisevaluation-framework

Projects that are alternatives of or similar to efda

git-explode
Explode linear sequence of git commits into topic branches
Stars: ✭ 43 (+26.47%)
Mutual labels:  dependency-analysis
kebechet
I'm Kebechet bot, goddess of freshness - I will keep your source code fresh and up-to-date
Stars: ✭ 23 (-32.35%)
Mutual labels:  dependency-analysis
PySODEvalToolkit
PySODEvalToolkit: A Python-based Evaluation Toolbox for Salient Object Detection and Camouflaged Object Detection
Stars: ✭ 59 (+73.53%)
Mutual labels:  evaluation-framework
Dependency Cruiser
Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.
Stars: ✭ 2,326 (+6741.18%)
Mutual labels:  dependency-analysis
comptroller
A simple and lightweight tool to manage your monorepo.
Stars: ✭ 26 (-23.53%)
Mutual labels:  dependency-analysis
babl
JSON templating on steroids
Stars: ✭ 29 (-14.71%)
Mutual labels:  dependency-analysis
merge-confidence
The home of WhiteSource's Merge Confidence feature, for Renovate and WhiteSource Remediate
Stars: ✭ 41 (+20.59%)
Mutual labels:  dependency-analysis
npmdc
ruby gem to check for missed NPM dependencies
Stars: ✭ 38 (+11.76%)
Mutual labels:  dependency-analysis
powerflows-dmn
Power Flows DMN - Powerful decisions and rules engine
Stars: ✭ 46 (+35.29%)
Mutual labels:  evaluation-framework
javascript
Basic Primitives Diagrams for JavaScript - data visualization components library that implements organizational chart and multi-parent dependency diagrams, contains implementations of JavaScript Controls and PDF rendering plugins.
Stars: ✭ 46 (+35.29%)
Mutual labels:  dependency-analysis
dep-scan
Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (+917.65%)
Mutual labels:  dependency-analysis
CrowdFlow
Optical Flow Dataset and Benchmark for Visual Crowd Analysis
Stars: ✭ 87 (+155.88%)
Mutual labels:  evaluation-framework
ochrona-cli
A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
Stars: ✭ 46 (+35.29%)
Mutual labels:  dependency-analysis
alphasql
AlphaSQL provides Integrated Type and Schema Check and Parallelization for SQL file set mainly for BigQuery
Stars: ✭ 35 (+2.94%)
Mutual labels:  dependency-analysis
mixedvines
Python package for canonical vine copula trees with mixed continuous and discrete marginals
Stars: ✭ 36 (+5.88%)
Mutual labels:  dependency-analysis
dependency-check-py
🔐 Shim to easily install OWASP dependency-check-cli into Python projects
Stars: ✭ 44 (+29.41%)
Mutual labels:  dependency-analysis
quica
quica is a tool to run inter coder agreement pipelines in an easy and effective ways. Multiple measures are run and results are collected in a single table than can be easily exported in Latex
Stars: ✭ 21 (-38.24%)
Mutual labels:  evaluation-framework
oga-maven-plugin
🧩 Old GroupIds Alerter - A Maven plugin that checks for deprecated groupId+artifactId (e.g. did you know that graphql-spring-boot-starter moved from com.graphql-java to com.graphql-java-kickstart?).
Stars: ✭ 22 (-35.29%)
Mutual labels:  dependency-analysis
react
Basic Primitives Diagrams for React. Data visualization components library that implements organizational chart and multi-parent dependency diagrams.
Stars: ✭ 15 (-55.88%)
Mutual labels:  dependency-analysis
copulae
Multivariate data modelling with Copulas in Python
Stars: ✭ 96 (+182.35%)
Mutual labels:  dependency-analysis
View All Similar Projects ➔

Evaluation Framework for Dependency Analysis

If you are...

  • Using open-source libraries,
  • Using package managers to manage project dependencies,
  • Concern about security vulnerabilities in the libraries you use,
  • Deciding what product to use for checking open-source vulnerabilities,

then this open-source project is tailored for you!

Evaluation Framework For Dependency Analysis is a project that allows users to test the dependency analysis tool of their choice and see how accurate the tool is. We hope that with this project, users can compare the different dependency analysis/open-source security scanners out in the market and decide which tool works best for them.

This project comprises of projects implemented on different languages, build systems and possibly different type of setups for each build system. Each project also has a README file to describe the expected output of testing against the project (number of direct dependencies, transitive dependencies, etc).

What is included in this project?

Projects implemented in:

  • Golang
  • Java
  • Ruby
  • Python
  • JavaScript
  • Objective-C
  • PHP
  • Scala
  • C/C++
  • C#

An EFDA Spreadsheet that allows you to track the languages/package managers/features supported by the dependency analysis tool of your choice, customize the importance of each feature, and compute a score for the tool.

EFDA Spreadsheet screenshot

Frequently Asked Questions

I don't see any project implemented on the build system of my choice. Can I contribute?

Yes of course! If you do not see the programming language/build system or even a particular tricky setup of a build system of your choice, feel free to send a pull request to us.

Are the results reliable?

The projects are made simple on purpose. The point is to create projects with dependencies that we can easily track so that we can easily verify the output is correct. This means the projects usually consist of only a few dependencies and little code.

We are also testing the support for different project setups. For example, in the java/maven/ directory, you can find projects with different types of Maven setup e.g. multi-modules, interpolated variables etc. A good dependency analysis tool should be able to support features provided by the build system.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].