Trevor Dunlap's repositories
gsd-analysis
Global Security Database (GSD) Analysis
patchparser
A python package for extracting commit features
vulnerable-functions
PoC for Vulnerable Function Identification and Reachability
agent
Vendor-neutral programmable observability pipelines.
beat-exporter
Elastic beat-exporter for Prometheus
cli
🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.
codeql-lgtm-test
Testing CodeQL examples on LGTM
ghsa-source-code-link-backfill
Backfill GitHub Security Advisories with Missing Source Code Links
git-vuln-finder
Finding potential software vulnerabilities from git commit messages
controller-tools
Tools to use with the controller-runtime libraries
cosign
Code signing and transparency for containers and binaries
edu
Educational Resources for Software Supply Chain Security
go-swagger
Swagger 2.0 implementation for go
gobump
Go tool to declaratively bump dependencies.
gsd-database
Global Security Database
gsd-tools
Global Security Database Tools
HERMES
Source code for accepted SANER 2022 Research Paper "HERMES: Using Commit-Issue Linking to Detect Vulnerability-Fixing Commits"
kubebuilder
Kubebuilder - SDK for building Kubernetes APIs using CRDs
litestream
Streaming replication for SQLite.
Llama2-Chat
Inference using Llama2
logstash-exporter
Prometheus exporter for Logstash written in Go
panic-at-the-distro
Panic at the distro research stuff
pluto
A cli tool to help discover deprecated apiVersions in Kubernetes
rumble
Data collection for base image CVEs etc.
terragrunt
Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.
vfcfinder
VFCFinder: Searching for the Missing Vulnerability Fixing Commits