An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全,具备专业的软件成分分析(SCA)、漏洞检测、专业漏洞库。
-
Updated
May 22, 2024 - Go
An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全,具备专业的软件成分分析(SCA)、漏洞检测、专业漏洞库。
GUAC aggregates software security metadata into a high fidelity graph database.
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.
Software Component Verification Standard (SCVS)
Software Supply Chain Security Platform
A compilation of resources in the software supply chain security domain, with emphasis on open source
Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
A suite of utilities to help with software supply chain challenges on nix targets
Github Action implementation of SLSA Provenance Generation
🔐 Shim to easily install OWASP dependency-check-cli into Python projects
Command line interface for the Phylum API
Repository for the SBOM Harbor.
Prototype Open Source Software Nutrition Labels
in-toto is a framework to secure the software supply chain.
The ChaordicLedger is the implementation of a design for a combination of Distributed Ledger Technology (DLT) and a Distributed File System (DFS) to create a secure, enterprise-grade platform for storing interlinked project artifacts.
Sharing software supply chain security open source projects
A malicious package to demonstrate the importance of software supply chain security.
Add a description, image, and links to the software-supply-chain topic page so that developers can more easily learn about it.
To associate your repository with the software-supply-chain topic, visit your repo's landing page and select "manage topics."