Skip to content
View jeremylong's full-sized avatar
1k followers · 5 following

Sponsors

@jpcmonster
@lastcmaster
@rieckpil
@kokkoniemi
@darranl
@premium-minds
@LucaBlackDragon

Achievements

Achievement: Pair Extraordinairex3Achievement: Starstruckx4Achievement: YOLOAchievement: QuickdrawAchievement: Public SponsorAchievement: Arctic Code Vault ContributorAchievement: Pull Sharkx3

Achievements

Achievement: Pair Extraordinairex3Achievement: Starstruckx4Achievement: YOLOAchievement: QuickdrawAchievement: Public SponsorAchievement: Arctic Code Vault ContributorAchievement: Pull Sharkx3

Highlights

  • Pro

Organizations

@OWASP

Block or report jeremylong

Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Pinned Loading

  1. dependency-check/DependencyCheck dependency-check/DependencyCheck Public

    OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

    Java 7.5k 1.4k

  2. dependency-check/dependency-check-gradle dependency-check/dependency-check-gradle Public

    The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for known, published vulnerabilities.

    Groovy 386 100

  3. open-vulnerability-clients open-vulnerability-clients Public

    Java library for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnerabilities, etc.)

    Java 14 8

  4. open-vulnerability-cli open-vulnerability-cli Public

    A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mirror the NVD.

    Java 164 45

  5. malicious-dependencies malicious-dependencies Public

    Demonstrates how a malicious dependency could negatively impact the build output.

    Java 25 12