Block or report user

Report or block stevespringett

Hide content and notifications from this user.

Contact Support about this user’s behavior.

Report abuse


@jenkinsci @hakbot @CycloneDX @package-url @DependencyTrack

Pinned repositories

  1. DependencyTrack/dependency-track

    Dependency-Track is an intelligent Software Composition Analysis (SCA) platform that allows organizations to identify and reduce risk from the use of third-party and open source components.

    Java 177 61

  2. jenkinsci/fortify-cloudscan-plugin

    Jenkins plugin for Fortify CloudScan

    Java 3 4

  3. jeremylong/DependencyCheck

    OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

    Java 1.3k 367

  4. jenkinsci/dependency-check-plugin

    Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

    Java 54 39

  5. Alpine

    An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies

    Java 7 8

  6. threatmodel-sdk

    A Java library for parsing and programmatically using threat models

    Java 33 15

1,604 contributions in the last year

Oct Nov Dec Jan Feb Mar Apr May Jun Jul Aug Sep Mon Wed Fri

Contribution activity

September 2018

Created an issue in datanucleus/datanucleus-rdbms that received 2 comments

SQLServer warning about FLOAT type not provided

Datanucleus: 5.1.9 Microsoft JDBC Driver: sqljdbc4.jar WARN [DataNucleus.Datastore] Default type for java type of java.lang.Float was previously jd…


Joined the package-url organization


A minimal specification and implementation of purl aka. a Package "mostly universal" URL.

Seeing something unexpected? Take a look at the GitHub profile guide.