risk-audit

Here are 2 public repositories matching this topic...

owasp-dep-scan / dep-scan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration. Google chat: https://chat.google.com/room/AAAA6l2dO60?cls=7

security-audit containers dependency-analysis vex compliance cve sca vulnerability-scanners security-tools devsecops reachability-analysis sbom cyclonedx supply-chain-security risk-audit dependency-audit

Updated Nov 5, 2024
Python

cob0 / dep-scan-threshold-analyzer

Star

A binary tool that checks if vulnerability reports from dep-scan meet predefined security thresholds.

security containers compliance cve sca vulnerability-scanners continous-integration security-tools devsecops continous-deployment supply-chain-security risk-audit dependency-audit owasp-dep-scan dep-scan dependency-threshold-analysis

Updated Oct 29, 2024
Python

Improve this page

Add a description, image, and links to the risk-audit topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the risk-audit topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly