sca
Here are 132 public repositories matching this topic...
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!
-
Updated
Jun 13, 2024 - Python
Automate open source license compliance and ensure software supply chain integrity
-
Updated
Jun 13, 2024 - Python
A suite of tools to automate software compliance checks.
-
Updated
Jun 13, 2024 - Kotlin
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. Slack: https://cyclonedx.slack.com/archives/C04NFFE1962
-
Updated
Jun 13, 2024 - JavaScript
🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!
-
Updated
Jun 13, 2024 - Python
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
-
Updated
Jun 13, 2024 - Java
Python SDK for the Finite State Platform API
-
Updated
Jun 13, 2024 - Python
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
-
Updated
Jun 13, 2024 - Python
prancer platform is an IaC Security engine + Continuous Compliance for your cloud (Azure, AWS, GCP) and Kubernetes environment
-
Updated
Jun 12, 2024 - Python
Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.
-
Updated
Jun 13, 2024 - Python
A Python client for the Revenera Flexera Code Insight
-
Updated
Jun 12, 2024 - Python
Payments for Ruby on Rails apps
-
Updated
Jun 11, 2024 - Ruby
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
-
Updated
Jun 11, 2024 - Go
-
Updated
Jun 11, 2024 - Java
An SCA tool that acts as a watchdog, keeping an eye out for security vulnerabilities on python projects dependencies and reporting them promptly.
-
Updated
Jun 10, 2024 - Rust
Improve this page
Add a description, image, and links to the sca topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the sca topic, visit your repo's landing page and select "manage topics."