GitHub / owasp-dep-scan / dep-scan
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
JSON API: http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/owasp-dep-scan%2Fdep-scan
PURL: pkg:github/owasp-dep-scan/dep-scan
Stars: 1,143
Forks: 117
Open issues: 75
License: mit
Language: Python
Size: 20.1 MB
Dependencies parsed at: Pending
Created at: over 5 years ago
Updated at: 15 days ago
Pushed at: 15 days ago
Last synced at: 15 days ago
Topics: compliance, containers, cve, cyclonedx, dependency-analysis, dependency-audit, devsecops, reachability-analysis, risk-audit, sbom, sca, security-audit, security-tools, supply-chain-security, vex, vulnerability-scanners
Funding Links https://owasp.org/donate?reponame=www-project-dep-scan&title=OWASP+dep-scan, https://github.com/sponsors/prabhu, https://github.com/sponsors/cerrussell