Rasmey SARETH's starred repositories
dep-scan
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
vulnrichment
A repo to conduct vulnerability enrichment.
transformers
🤗 Transformers: State-of-the-art Machine Learning for Pytorch, TensorFlow, and JAX.
Unified-Cybersecurity-Ontology
Unified Cybersecurity Ontology
cyclonedx-node-yarn
Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
cyclonedx-python-lib
Python implementation of OWASP CycloneDX
s2c2f
The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously improve the S2C2F guide which outlines and defines how to securely consume Open Source Software (OSS) dependencies into the developer’s workflow.
archivista
Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for software artifacts.
transparency-exchange-api
A standard API specification for exchanging supply chain artifacts and intelligence
sbom4python
A tool to generate a SBOM (Software Bill of Materials) for an installed Python module
specification
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
Software-Supply-Chain-Security
A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling, books, articles and a plethora of learning resources from the web.
cyclonedx-python
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
awesome-gdpr
Protection of natural persons with regard to the processing of personal data and on the free movement of such data.
public-apis
A collective list of free APIs
slsa-plugin
A Jenkins plugin to create SLSA provenance attestations
schemathesis
Supercharge your API testing, catch bugs, and ensure compliance