Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.
-
Updated
Dec 22, 2024 - Python
Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.
A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling, books, articles and a plethora of learning resources from the web.
Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
TuxCare SecureChain enhances Java supply chain security through vetted libraries, vulnerability fixes, and extended support. Ideal for enterprise-level compliance and secure development.
PatchFinder: A Two-Phase Approach to Security Patch Tracing for Disclosed Vulnerabilities in Open Source Software (ISSTA 2024)
Apache OfBiz Auth Bypass Scanner for CVE-2023-51467
Securiskan: Scan files for malware. Secure your digital space.
Comprehensive Exploit Chain for Multiple Vulnerabilities in VinChin Backup & Recovery <= 7.2
Bitbucket pipe to generate a CycloneDX sBOM for node/npm projects
This repository provides comprehensive guides, configurations, rules, and practical examples for Snort, the open-source intrusion detection system (IDS). Ideal for cybersecurity professionals and enthusiasts looking to enhance their network security skills.
Studying open source security resources in SUA
A Bitbucket Pipe containing a collection of open source tools to perform various types of additional analysis on a CycloneDX or SPDX sBOM (Software Bill of Materials).
A stealth security program that adds a timed challenge to protect your PC, shutting down if unauthorized users fail to meet the task. Ensures an extra layer of data protection even after login credentials are compromised.
This CLI Program is an antivirus tool designed to scan directories, files, or entire drives for malicious content using YARA rules. It features options for manual or periodic scans, with quarantine capabilities for detected threats. The script utilizes OS-specific paths and interfaces.
Bitbucket pipe to generate a CycloneDX sBOM for Java, Go, Python & Node projects
This tool automates the process of auditing a web application for common security vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), and missing HTTP security headers. The results of the audit are stored in an HTML report for easy review.
GitHub Action to install phylum CLI tool
Preventing sensitive data from being pushed to a repository | Removing traces of the sensitive data | GitHub vulnerability alerts| Fixing vulnerable dependencies | Security policy | .gitignore | Tracing sensitive data
Add a description, image, and links to the open-source-security topic page so that developers can more easily learn about it.
To associate your repository with the open-source-security topic, visit your repo's landing page and select "manage topics."