Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: syft

nmaguiar/imgutils

Container image with docker/helm/skopeo/dive/crictl/syft tools

Language: Shell - Size: 4.4 MB - Last synced at: about 12 hours ago - Pushed at: about 13 hours ago - Stars: 2 - Forks: 0

BBlue530/PatchHound

PatchHound is an open source SBOM vulnerability scanner and report generator with image signing, verification, and automated alerts for secure software supply chains.

Language: Python - Size: 258 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 0 - Forks: 0

goreleaser/example-supply-chain

Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations

Language: Go - Size: 141 KB - Last synced at: 8 days ago - Pushed at: 9 days ago - Stars: 58 - Forks: 10

darkwizard242/ansible-role-syft

Ansible role for 'syft'. Available on Ansible Galaxy.

Language: Python - Size: 141 KB - Last synced at: 10 days ago - Pushed at: 11 days ago - Stars: 5 - Forks: 0

OpenMined/PySyft

Perform data science on data that remains in someone else's server

Language: Python - Size: 736 MB - Last synced at: 14 days ago - Pushed at: about 2 months ago - Stars: 9,771 - Forks: 1,999

devops-kung-fu/bomber

Scans Software Bill of Materials (SBOMs) for security vulnerabilities

Language: Go - Size: 4.32 MB - Last synced at: about 20 hours ago - Pushed at: 5 months ago - Stars: 578 - Forks: 50

juburr/syft-orb

A simple CircleCI orb used to install Syft and produce SBOMs for container images

Language: Shell - Size: 3.39 MB - Last synced at: 22 days ago - Pushed at: 22 days ago - Stars: 1 - Forks: 0

Paulinhx/aegisflow

AegisFlow is a threat-aware CI/CD pipeline that integrates real-time threat intelligence (AlienVault OTX), MITRE ATT&CK-based static analysis, and SBOM-driven CVE detection to automate secure software delivery.

Language: Python - Size: 37.1 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 2 - Forks: 0

marcinbojko/syft

Chocolatey package for syft - https://github.com/anchore/syft

Language: Shell - Size: 156 KB - Last synced at: 27 days ago - Pushed at: 27 days ago - Stars: 0 - Forks: 0

naveen-sekhar/SBOM-Automation-Using-Syft-and-Vulnerability-Analysis-using-Grype

An automated toolchain to generate SBOMs and detect software vulnerabilities using Syft and Grype. Built with Bash and Python, it supports SPDX/CycloneDX formats and produces detailed HTML/JSON reports for secure software auditing.

Language: Shell - Size: 151 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

OpenMined/KotlinSyft

The official Syft worker for secure on-device machine learning

Language: Kotlin - Size: 15.6 MB - Last synced at: 2 months ago - Pushed at: about 4 years ago - Stars: 89 - Forks: 26

popey/measure-syft

A tool to measure and compare the performance of different versions of Syft.

Language: Python - Size: 17.6 KB - Last synced at: about 24 hours ago - Pushed at: 7 months ago - Stars: 2 - Forks: 0

OpenMined/syft.js

The official Syft worker for Web and Node, built in Javascript

Language: JavaScript - Size: 19.1 MB - Last synced at: 29 days ago - Pushed at: over 2 years ago - Stars: 149 - Forks: 53

NicoleStrel/dockerfile-security-pipeline

A pipeline that builds safer containers with zero hassle

Size: 11.7 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0

jbeduino/cosca

Cosca (Combo Scanner) is an Application Security automation tool that invokes third-party scanners and processes outputs in a one-liner command.

Language: Python - Size: 42.8 MB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0

nightlark/anchore-syft-wheel

Python wheels for installing Anchore's Syft tool for generating a Software Bill of Materials

Language: CMake - Size: 84 KB - Last synced at: 26 days ago - Pushed at: 26 days ago - Stars: 1 - Forks: 1

ckotzbauer/sbom-diff-action 📦

Comment SBOM diffs as PR comments.

Language: Shell - Size: 134 KB - Last synced at: 12 days ago - Pushed at: 5 months ago - Stars: 3 - Forks: 1

eon01/DevSecOpsInPracticeCompanionToolkit

DevSecOps in Practice - The Companion Toolkit

Size: 0 Bytes - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0

EnzoFanAccount/sbombardier

AI-powered tool to automate Software Bill of Materials (SBOM) validation, license compliance, and vulnerability detection for open-source dependencies.

Language: TypeScript - Size: 1.11 MB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0

ihavespoons/rules_syft

Syft rules for bazel

Language: Starlark - Size: 207 KB - Last synced at: 8 days ago - Pushed at: 9 months ago - Stars: 4 - Forks: 1

Shufang-Zhu/Syft

Synthesizer of LTLf formula

Language: C++ - Size: 2.35 MB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 9 - Forks: 10

callezenwaka/sphinx-syft-theme

This is sphinx-syft-theme.

Language: Python - Size: 2 MB - Last synced at: 2 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0

mchmarny/sbomer

Generates daily SBOM and vulnerability reports for container images and saves resulting files into GCS bucket and data into BigQuery tables.

Language: HCL - Size: 26.9 MB - Last synced at: 3 months ago - Pushed at: about 2 years ago - Stars: 2 - Forks: 0

snehilsanyal/federated-recipes

🌻🌐 A repository that contains Federated Learning Recipes.

Size: 1.95 KB - Last synced at: 6 months ago - Pushed at: 10 months ago - Stars: 0 - Forks: 0

CMS-Enterprise/batcave-omnibus 📦

batCAVE Omnibus

Language: Dockerfile - Size: 195 KB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 1 - Forks: 3

OpenMined/SwiftSyft

The official Syft worker for iOS, built in Swift

Language: Swift - Size: 49.8 MB - Last synced at: 27 days ago - Pushed at: about 4 years ago - Stars: 50 - Forks: 16

mostafa/practical-cscrm 📦

Practical Cybersecurity Supply Chain Risk Management

Size: 3.22 MB - Last synced at: 7 months ago - Pushed at: over 3 years ago - Stars: 5 - Forks: 1

OpenMined/syft-proto

Defines types for all Serde encoding across languages

Language: JavaScript - Size: 1.39 MB - Last synced at: 10 days ago - Pushed at: about 1 year ago - Stars: 20 - Forks: 23

Max-Derner/job-scraper

A tiny job-scraping project to automating job hunting when employers aren't on indeed, built for my wife

Language: Python - Size: 60.5 KB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 3 - Forks: 0

Syft-Application/redux-rollbar-telemetry-middleware 📦

Middleware that helps to add redux action to the Rollbar.Telemetry

Language: JavaScript - Size: 57.6 KB - Last synced at: about 1 month ago - Pushed at: almost 6 years ago - Stars: 3 - Forks: 0

Syft-Application/redux-rollbar-state-middleware 📦

Middleware that add redux state to the payload of Rollbar logs

Language: JavaScript - Size: 54.7 KB - Last synced at: 28 days ago - Pushed at: almost 8 years ago - Stars: 2 - Forks: 0

GoTurkiye/goreleaser-supply-chain-example

A demonstration of how GoReleaser can help us to make software supply chain more secure by using bunch of tools such as cosign, syft, grype, slsa-provenance

Language: Go - Size: 41 KB - Last synced at: about 1 year ago - Pushed at: over 3 years ago - Stars: 4 - Forks: 0

sayakpaul/Federated-Learning-Shenanigans

My experiments on federated learning as done along with learning it on Udacity

Language: Jupyter Notebook - Size: 27.3 KB - Last synced at: 2 months ago - Pushed at: over 6 years ago - Stars: 1 - Forks: 0

OpenMined/syft.cpp

SOON TO BE DEPRECATED - A library for encrypted, privacy preserving machine learning

Language: C++ - Size: 59.6 KB - Last synced at: 2 months ago - Pushed at: over 5 years ago - Stars: 3 - Forks: 3

vvmnnnkv/syft-js-worker

Javascript worker for PySyft

Language: JavaScript - Size: 38.1 KB - Last synced at: 3 months ago - Pushed at: about 6 years ago - Stars: 4 - Forks: 1

Related Keywords
syft 35 sbom 16 grype 6 security 5 cosign 5 deep-learning 5 docker 5 python 5 security-automation 4 federated-learning 4 privacy 4 cyclonedx 4 trivy 4 devsecops 4 spdx 3 pytorch 3 sast 3 supply-chain-security 3 semgrep 3 supply-chain 3 swift 2 goreleaser 2 golang 2 secure-computation 2 slsa 2 slsa-provenance 2 software-bill-of-materials 2 javascript 2 sbom-generator 2 cryptography 2 hacktoberfest 2 vulnerability-scanning 2 vulnerability-management 2 trufflehog 2 trivy-scan 2 github-actions 2 vulnerability-scanners 2 kubernetes 2 rollbar 2 redux-middleware 2 redux 2 react 2 readthedocs 1 jupyter-notebook 1 code 1 bazel 1 cybersecurity 1 gnn 1 open-policy-agent 1 ml 1 legal 1 llm 1 compliance 1 cnn 1 terraform 1 neuvector 1 gitlab 1 git 1 devops 1 dependency-checker 1 cloudnative 1 cicd 1 checkov 1 books 1 gihub-actions 1 diff 1 action 1 pypi-package 1 js 1 cpp 1 slsaprovenance 1 githubactions 1 rollbar-telemetry 1 webscraping 1 logging-library 1 email 1 bash 1 java 1 owasp 1 nist 1 dependency-track 1 c-scrm 1 omnibus 1 gitleaks 1 batcave 1 torch 1 tensorflow 1 recipes 1 pysyft 1 flower 1 fedml 1 vulnerability 1 vex 1 report 1 gcs 1 gcp 1 bigquery 1 sphinx 1 circleci 1 supplychain 1