Philippe Ombredanne's repositories
pretty-yaml
PyYAML-based module to produce pretty and readable YAML-serialized data
risk-explorer-for-software-supply-chains
A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and other resources. The taxonomy as well as related safeguards can be explored using an interactive visualization tool.
apkindex-archive
Archive for APKINDEX
bitpacking
SIMD algorithms for integer compression via bitpacking. This crate is a port of a C library called simdcomp.
charset_normalizer
🔎 Like Chardet. 🚀 Package for encoding & language detection. Charset detection.
cve-search
a tool to perform local searches for known vulnerabilities
CVE_Prioritizer
Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.
eyeballvul
future-proof vulnerability detection benchmark, based on CVEs in open-source repos
java-callgraph
Programs for producing static and dynamic (runtime) call graphs for Java programs
kazam
Kazam - Linux Desktop Screen Recorder and Broadcaster
Morefixes
MoreFixes: A Large-Scale Dataset of CVE Fix Commits Mined through Enhanced Repository Discovery
nixpacks
App source + Nix packages + Docker = Image
oracle-macaron
Macaron is an extensible supply chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD services. It can be used to prevent supply chain attacks or check conformance to frameworks, such as SLSA.
poetry-relax
Poetry plugin to relax version pins
project-kb-
This dataset contains fix commits for known vulnerabilities in open-source projects and fuels the vulnerability-assessment-tool
pypi-simple
PyPI Simple Repository API client library
rspamd
Rapid spam filtering system.
security-patches-dataset
☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV); tools to automatically update the data are provided.
Specs
A repository of CocoaPods (cocoapods.org) specifications.
string-similarity-1
Implementation of various string similarity metrics.
validators
Python Data Validation for Humans™.
vulnrichment
A repo to conduct vulnerability enrichment.
yara-x
A rewrite of YARA in Rust.
ydb
YDB is an open source Distributed SQL Database that combines high availability and scalability with strong consistency and ACID transactions