cyclonedx-cliCycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Stars: ✭ 154 (+49.51%)
Mutual labels: owasp, bom, vex, spdx, bill-of-materials, software-bill-of-materials, purl, package-url, sbom, cyclonedx, sbom-generator, obom, mbom, saasbom cyclonedx-php-composerCreate CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
Stars: ✭ 20 (-80.58%)
Mutual labels: owasp, bom, vex, spdx, bill-of-materials, software-bill-of-materials, purl, package-url, sbom, cyclonedx, sbom-generator, obom, mbom, saasbom cyclonedx-dotnetCreates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Stars: ✭ 110 (+6.8%)
Mutual labels: owasp, bom, vex, spdx, bill-of-materials, software-bill-of-materials, purl, package-url, sbom, cyclonedx, sbom-generator, obom, mbom, saasbom cyclonedx-pythonCreates CycloneDX Software Bill of Materials (SBOM) from Python projects and environments.
Stars: ✭ 78 (-24.27%)
Mutual labels: owasp, bom, vex, spdx, bill-of-materials, software-bill-of-materials, purl, package-url, sbom, cyclonedx, sbom-generator, obom, mbom, saasbom specificationSoftware Bill of Material (SBOM) standard designed for use in application security contexts and supply chain component analysis
Stars: ✭ 129 (+25.24%)
Mutual labels: owasp, bom, vex, spdx, bill-of-materials, software-bill-of-materials, sbom, cyclonedx, obom, mbom, saasbom cyclonedx-gomodCreates CycloneDX Software Bill of Materials (SBOM) from Go modules
Stars: ✭ 27 (-73.79%)
cyclonedx-node-modulecreates CycloneDX Software Bill of Materials (SBOM) from node-based projects
Stars: ✭ 104 (+0.97%)
scancode.ioScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!
Stars: ✭ 66 (-35.92%)
awesome-sbomA curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles
Stars: ✭ 164 (+59.22%)
dep-scanFully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (+235.92%)
SBOMExamples and proof-of-concept for Software Bill of Materials (SBOM) code & data
Stars: ✭ 38 (-63.11%)
cdxgenCreates CycloneDX Software Bill-of-Materials (SBOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI//CD pipeline with automatic submission to Dependency Track server.
Stars: ✭ 75 (-27.18%)
Git Commit Id Maven PluginMaven plugin which includes build-time git repository information into an POJO / *.properties). Make your apps tell you which version exactly they were built from! Priceless in large distributed deployments... :-)
Stars: ✭ 1,187 (+1052.43%)
Jgitver Maven Pluginmaven core extension to automatically define versions using jgitver & git tags
Stars: ✭ 117 (+13.59%)
SortpomMaven plugin that helps the user sort pom.xml.
Stars: ✭ 185 (+79.61%)
Jib🏗 Build container images for your Java applications.
Stars: ✭ 11,370 (+10938.83%)
macosappbundler-maven-pluginMaven plugin for creating a native macOS bundle containing all dependencies required by a Maven project
Stars: ✭ 35 (-66.02%)
snyk-maven-pluginTest and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
Stars: ✭ 64 (-37.86%)
InsiderStatic Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Stars: ✭ 216 (+109.71%)
lunasecLunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (+1124.27%)
packageurl-swiftSwift implementation of the package url spec
Stars: ✭ 21 (-79.61%)
jcabi-mysql-maven-pluginMySQL Maven Plugin: starts MySQL server on pre-integration phase and shuts it down on post-integration phase
Stars: ✭ 34 (-66.99%)
KiCostBuild cost spreadsheet for a KiCad project.
Stars: ✭ 376 (+265.05%)
Maven Min Plugin📦 Latke application JavaScript and CSS files compression.
Stars: ✭ 5 (-95.15%)
light-jpfLightweight Java Plugin Framework
Stars: ✭ 19 (-81.55%)
webstartwww.mojohaus.org/webstart/
Stars: ✭ 27 (-73.79%)
plexus-compilerPlexus compiler a layer on top of compilers and used by maven-compiler-plugin
Stars: ✭ 24 (-76.7%)
restdocs-specA maven plugin for generating Open API and Postman Collection specifications using Spring Restdocs.
Stars: ✭ 43 (-58.25%)
dmn-checkA tool which performs static analyses on Decision Model Notation (DMN) files to detect bugs
Stars: ✭ 34 (-66.99%)
kobbyKobby is a codegen plugin of Kotlin DSL Client by GraphQL schema. The generated DSL supports execution of complex GraphQL queries, mutation and subscriptions in Kotlin with syntax similar to native GraphQL syntax.
Stars: ✭ 52 (-49.51%)
keep-changelog-maven-pluginMaven plugin to help creating CHANGELOG by keeping one format and solving merge request conflicts problem by extraction of new CHANGELOG entries to seperate files.
Stars: ✭ 22 (-78.64%)
www-project-csrfguardThe aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens
Stars: ✭ 43 (-58.25%)
Proguard Maven PluginProGuard Maven plugin that supports modularised ProGuard packages
Stars: ✭ 353 (+242.72%)
mvn-jlinkMaven plugin to provide way to work with jlink tool in maven projects
Stars: ✭ 34 (-66.99%)
RapidMavenPushPluginA Gradle plugin : Upload Artifacts to Multi Maven Repository
Stars: ✭ 21 (-79.61%)