Java vulnerability-detection

Open-source Java projects categorized as vulnerability-detection
Edit details
Topics: Security software-composition-analysis gradle-plugin Vulnerabilities security-audit
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Java vulnerability-detection Projects

  • DependencyCheck

    OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

    • Project mention: Python Security Essentials for Your Apps | dev.to | 2024-05-20

    Next, we'll introduce key third-party tools such as Cloudinary, OWASP Dependency-Check, and Bandit, which automate crucial security tasks that can be challenging to manage manually. These tools handle file security, dependency vulnerability checks, and code base vulnerability scanning, ensuring your app remains protected against potential attacks.

  • dependency-track

    Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

    • Project mention: Show HN: Pre-alpha tool for analyzing spdx SBOMs generated by GitHub | news.ycombinator.com | 2024-04-21

    I've become interested in SBOM recently, and found there were great tools like https://dependencytrack.org/ for CycloneDX SBOMs, but all I have is SPDX SBOMs generated by GitHub.

    I decided to have a go at writing my own dependency track esque tool aiming to integrate with the APIs GitHub provides.

    It's pretty limited in functionality so far, but can give a high level summary of the types of licenses your repository dependencies use, and let you drill down into potentially problematic ones.

    Written in NextJS + mui + sqlite, and using another project of mine to generate most of the API boilerplate/glue (https://github.com/mnahkies/openapi-code-generator)

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Java vulnerability-detection related posts

  • Do you use dependency analysis and vulnerability detection tools?

    3 projects | /r/learnprogramming | 16 Jan 2023

  • The ultimate guide to Java Security Vulnerabilities (CVE)

    2 projects | /r/java | 29 Dec 2022

  • Security in CICD / DevSecOps

    6 projects | /r/devops | 22 Mar 2022

  • Is there a tool to track CVEs for the software that we use?

    8 projects | /r/sysadmin | 14 Dec 2021

Index

Project Stars
1 DependencyCheck 5,944
2 dependency-track 2,374

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com