Open Hub
Black Duck Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

SonarQube

Compare

  Analyzed 4 months ago

SonarQube is an open source software quality management tool, dedicated to continuously analyze and measure source code quality. Using SonarQube throughout the whole development project life cycle drastically improves visibility for every stakeholder. This gained visibility allows to manage risks ... [More] , reduce maintenance costs and improve agility by implementing a real quality first approach. Teams can now seamlessly embrace quality with fun. [Less]

27.8M lines of code

83 current contributors

4 months since last commit

129 users on Open Hub

Activity Not Available
4.54545
   
1 Review
I Use This
Mostly written in Go
Licenses: lgpl3
Tags agile code_analysis dashboard findbugs maven2 metrics qa qualimetry quality sonar vulnerability-scanner vulnerabilityscanner

OWASP Dependency-Track

Compare

Claimed by Open Web Application Securi... Analyzed 1 day ago

Dependency-Track is a continuous SBOM analysis platform that allows organizations to identify and reduce risk in the software supply chain. Dependency-Track support SBOM, SaaSBOM, HBOM, VDR, and VEX in the OWASP CycloneDX format.

550K lines of code

8 current contributors

1 day since last commit

0 users on Open Hub

Very High Activity
0.0
 
0 Reviews
I Use This
Mostly written in Java
Licenses: gpl3_or_l...
Tags cicd CycloneDX devops devsecops EO14028 HBOM inventory SaaSBOM SBOM security securityscanner SPDX 3 more...

trivy

Compare

  Analyzed about 4 hours ago

A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI

199K lines of code

46 current contributors

3 days since last commit

0 users on Open Hub

High Activity
0.0
 
0 Reviews
I Use This
Mostly written in Go
Licenses: No declared licenses
Tags vulnerability-scanner vulnerabilityscanner

git-vuln-finder

Compare

  Analyzed about 19 hours ago

Finding potential software vulnerabilities from git commit messages.

368 lines of code

0 current contributors

7 months since last commit

0 users on Open Hub

Very Low Activity
0.0
 
0 Reviews
I Use This
Mostly written in Python
Licenses: AGPL3_or_...
Tags git scanner vulnerability vulnerability-scanner

CakeFuzzer

Compare

  Analyzed about 15 hours ago

Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with minimal false positives. Currently, our focus is on supporting the Cake PHP framework, but soon, it will also be available to other web ... [More] application frameworks. Cake Fuzzer is based on the concept of Interactive Application Security Testing (IAST). Our approach achieves the following objectives: - automated vulnerability discovery for CakePHP-based applications; - elimination of application-specific knowledge or pre-configuration requirements; - minimal or zero false positives in the results; - a user-friendly scanner that requires only basic security knowledge. [Less]

5.48K lines of code

0 current contributors

5 months since last commit

0 users on Open Hub

Very Low Activity
0.0
 
0 Reviews
I Use This
Mostly written in Python
Licenses: AGPL3_or_...
Tags cakephp cybersecurity hacking iast opensource security securitychecker securityscanner securitytesting vulnerabilities vulnerability-scanner vulnerabilityscanner 1 more...