Red Hat Product Security

RedHatProductSecurity

Red Hat Product Security

https://access.redhat.com/security/overview/

@RedHatSecurity

Red Hat Product Security's repositories

cvss

CVSS2/3/4 library with interactive calculator for Python 2 and Python 3

Language:PythonLGPL-3.071 9 20

cvelib

A Python library and command line interface for CVE Services.

Language:PythonMIT52 15 30

rapidast

RapiDAST enables simple, continuous and fully automated application security testing

Language:PythonApache-2.051 9 23

cvss-v4-calculator

CVSS v4.0 calculator

Language:JavaScriptBSD-2-Clause28 11 24

osidb

OSIDB — Open Security Issue Database

Language:PythonMIT25 8 1

component-registry

Component Registry (Corgi) aggregates component data across Red Hat's supported products, managed services, and internal product pipeline services.

Language:PythonMIT19 50

advisory-parser

A library for parsing security advisories

Language:HTMLLGPL-3.012 3 15

openlcs

Open License and Crypto Scanner

Language:PythonMIT9 90

griffon

Red Hat Product Security CLI

Language:PythonMIT7 40

oscal-component-definitions

OSCAL Component Definition Library

Language:ShellNOASSERTION6 50

oscal-profiles

OSCAL Profile Library

Language:PythonNOASSERTION5 5 1

trestle-bot

A workflow automation tool for `compliance-trestle`

Language:PythonApache-2.04 6 22

trestle-demo

Demo workflows for continuous compliance with OSCAL content and compliance-trestle

Language:MakefileApache-2.04 3 1

deplist

Language:GoApache-2.03 4 7

osim

Web UI for interacting with OSIDB

Language:TypeScriptMIT3 10 1

osidb-bindings

A client library for accessing OSIDB API

Language:PythonMIT2 5 7

rhubarb

Exclusive, robust and deadlock-free task execution for celery

Language:PythonMIT2 40

component-registry-bindings

A client library for accessing Component Registry API

Language:PythonMIT1 50

oscal-automation-libs

Language:ShellApache-2.01 50

security-data-guidelines

A set of documents detailing Red Hat's publishing of security data.

Language:PythonMIT000

cac-content

A fork of Compliance as Code content. Security automation content in SCAP, Bash, Ansible, and other formats

Language:ShellNOASSERTION000

compliance-to-policy

Fork of Compliance-to-Policy (C2P) provides the framework to bridge the gap between compliance and policy administration.

Apache-2.0000

compliance-trestle

An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.

Language:PythonApache-2.0000

django-mptt

Utilities for implementing a modified pre-order traversal tree in django.

Language:PythonNOASSERTION000

LicenseScanner

Language:Shell000

OSCAL

Fork of Open Security Controls Assessment Language (OSCAL)

NOASSERTION000

oscal-compliance-prototype

Apache-2.0040

rapidast-results-parser

Small Python script used to parse the results provided from Rapidast

Language:PythonMIT040

scancode-toolkit

:mag: Fork of ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!

000

testbuild

temporary public repo for testing build pipelines

Language:Dockerfile000