dep-scanFully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (+361.33%)
cyclonedx-node-modulecreates CycloneDX Software Bill of Materials (SBOM) from node-based projects
Stars: ✭ 104 (+38.67%)
cyclonedx-pythonCreates CycloneDX Software Bill of Materials (SBOM) from Python projects and environments.
Stars: ✭ 78 (+4%)
specificationSoftware Bill of Material (SBOM) standard designed for use in application security contexts and supply chain component analysis
Stars: ✭ 129 (+72%)
cyclonedx-maven-pluginCreates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Stars: ✭ 103 (+37.33%)
cyclonedx-dotnetCreates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Stars: ✭ 110 (+46.67%)
cyclonedx-cliCycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Stars: ✭ 154 (+105.33%)
cyclonedx-php-composerCreate CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
Stars: ✭ 20 (-73.33%)
scancode.ioScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!
Stars: ✭ 66 (-12%)
cyclonedx-gomodCreates CycloneDX Software Bill of Materials (SBOM) from Go modules
Stars: ✭ 27 (-64%)
fullmetalupdateFullMetalUpdate Python client application.
Stars: ✭ 19 (-74.67%)
1clickBOMA browser extension to quickly fill shopping carts with electronic components.
Stars: ✭ 76 (+1.33%)
oci-quickstartOracle Cloud Infrastructure Quick Start
Stars: ✭ 59 (-21.33%)
awesome-sbomA curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles
Stars: ✭ 164 (+118.67%)
lunasecLunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (+1581.33%)
vulnerability-dbVulnerability database and package search for sources such as OSV, NVD, GitHub and npm.
Stars: ✭ 36 (-52%)
vilicusVilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.
Stars: ✭ 82 (+9.33%)
FibDotNetBuild container images for your .NET applications.
Stars: ✭ 17 (-77.33%)
vulntestStatic code analysis test source code
Stars: ✭ 24 (-68%)
casCodenotary Community Attestation Service (CAS) for notarization and authentication of digital artifacts
Stars: ✭ 137 (+82.67%)
db-shardingOracle Sharded database deployment automation and tools for use in client applications.
Stars: ✭ 30 (-60%)
nix2containerAn archive-less dockerTools.buildImage implementation
Stars: ✭ 133 (+77.33%)
bom-radar-cardA rain radar card using the new tiled images from the Australian BOM
Stars: ✭ 52 (-30.67%)
haulerAirgap Swiss Army Knife
Stars: ✭ 44 (-41.33%)
Log4j-CVE-DetectDetections for CVE-2021-44228 inside of nested binaries
Stars: ✭ 33 (-56%)
inclavare-containersA novel container runtime, aka confidential container, for cloud-native confidential computing and enclave runtime ecosystem.
Stars: ✭ 510 (+580%)
KiCostBuild cost spreadsheet for a KiCad project.
Stars: ✭ 376 (+401.33%)
boot2podmanLightweight Linux for Podman
Stars: ✭ 86 (+14.67%)
oci-clouderaTerraform module to deploy Cloudera on Oracle Cloud Infrastructure (OCI)
Stars: ✭ 20 (-73.33%)
bom-weather-cardCustom Animated Weather Card for any weather provider
Stars: ✭ 111 (+48%)
vulndb-data-mirrorA simple Java command-line utility to mirror the entire contents of VulnDB.
Stars: ✭ 36 (-52%)
KC2PKKiCad to PartKeepr BOM Tool with Octopart integration
Stars: ✭ 28 (-62.67%)
filegraintransport-agnostic, fine-grained content-addressable container image layout
Stars: ✭ 23 (-69.33%)
orasORAS CLI
Stars: ✭ 672 (+796%)
JavaScript-BootcampComplete Documentation For JavaScript Bootcamp Course By Osama Elzero.
Stars: ✭ 27 (-64%)
sbom-operatorCatalogue all images of a Kubernetes cluster to multiple targets with Syft
Stars: ✭ 114 (+52%)
flintlockLock, Stock, and Two Smoking MicroVMs. Create and manage the lifecycle of MicroVMs backed by containerd.
Stars: ✭ 78 (+4%)
osxbomA reimplementation of lsbom
Stars: ✭ 24 (-68%)
ocistowStream, Mutate and Sign Images with AWS Lambda and ECR
Stars: ✭ 17 (-77.33%)
KiBotKiCad automation utility
Stars: ✭ 203 (+170.67%)
terraform-oci-vcnA reusable and extensible Terraform module that provisions a VCN on Oracle Cloud Infrastructure
Stars: ✭ 22 (-70.67%)
undockExtract contents of a container image in a local folder
Stars: ✭ 119 (+58.67%)
essexEssex - Boilerplate for Docker Based Projects
Stars: ✭ 32 (-57.33%)
oci-spec-rsOCI Runtime, Image and Distribution Spec in Rust
Stars: ✭ 117 (+56%)
ocibuilderA tool to build OCI compliant images
Stars: ✭ 63 (-16%)
istioistio offical suppport for arm64 will land since v1.15
Stars: ✭ 168 (+124%)
cryostatSecure JDK Flight Recorder management for containerized JVMs
Stars: ✭ 147 (+96%)
utfbomDetection of the BOM and removing as necessary
Stars: ✭ 87 (+16%)
SBOMExamples and proof-of-concept for Software Bill of Materials (SBOM) code & data
Stars: ✭ 38 (-49.33%)