leoliaolei

leoliaolei's starred repositories

jenkins-pipeline-library

Jenkins pipeline library with common functionalities for CI/CD environments, mainly targeted for the implementation of the SQA baseline requirements from https://indigo-dc.github.io/sqa-baseline/

Language:GroovyApache-2.01100

fasten

Analyse package dependency networks at the call graph level

Language:JavaApache-2.08600

gokart

A static analysis tool for securing Go code

Language:GoApache-2.0217500

license-compatibility-checker

Check npm dependencies' package.json for license compatibility (aka compliance check) with the current project based on spdx notation and naming conventions.

Language:JavaScriptMIT9300

LDBcollector

A small application which needs a better name and collects oss-license metadata and combines it

Language:HTMLNOASSERTION3100

it-depends

A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

Language:PythonLGPL-3.032600

advisory-database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

CC-BY-4.0167400

osv.dev

Open source vulnerability DB and triage service.

Language:PythonApache-2.0145700

syft

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

Language:GoApache-2.0581400

awesome-software-supply-chain-security

A compilation of resources in the software supply chain security domain, with emphasis on open source

26600

Scanners-Box

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

812500

scanoss.js

The SCANOSS JS package provides a simple, easy to consume module for interacting with SCANOSS APIs/Engine.

Language:TypeScriptNOASSERTION600

influx-cli

CLI for managing resources in InfluxDB v2

Language:GoMIT6100

influxdb

Scalable datastore for metrics, events, and real-time analytics

Language:RustApache-2.02828100

licensecheck

The licensecheck package classifies license files and heuristically determines how well they correspond to known open source licenses.

Language:GoBSD-3-Clause44600

Software-Analysis-PAVT

Program Analysis, Software Verification & Testing. Python3, CAS, Dafny, Z3, CVC4, UCLID, ZChaff, NuSMV, AFL, Scala, CBMC & LLVM Framework (CO).

Language:BoogieApache-2.03700

fernflower

Unofficial mirror of FernFlower Java decompiler (All pulls should be submitted upstream)

Language:Java336000

my-ebook

我收集的电子书, 主要是软件开发方向

MIT121400

awesome-web-security

🐶 A curated list of Web Security materials and resources.

1108800

wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Language:CNOASSERTION970800

vuls

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Language:GoGPL-3.01080700

DependencyCheck

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Language:JavaApache-2.0617500

Bastillion

Bastillion is a web-based SSH console that centrally manages administrative access to systems. Web-based administration is combined with management and distribution of user's public SSH keys.

Language:JavaNOASSERTION313600