I build stuff, I break stuff, I develop stuff to protect stuff.
Creator of @DependencyTrack. Chair of @CycloneDX and @Ecma-TC54. Core team of @package-url
Highlights
- Pro
Pinned Loading
-
DependencyTrack/dependency-track
DependencyTrack/dependency-track PublicDependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
-
CycloneDX/specification
CycloneDX/specification PublicOWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, an…
-
package-url/purl-spec
package-url/purl-spec PublicA minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
-
OWASP/Software-Component-Verification-Standard
OWASP/Software-Component-Verification-Standard PublicSoftware Component Verification Standard (SCVS)
-
CPE-Parser
CPE-Parser PublicA utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST
-
cvss-calculator
cvss-calculator PublicA Java library for calculating CVSSv2 and CVSSv3 scores and vectors
Something went wrong, please refresh the page to try again.
If the problem persists, check the GitHub status page or contact support.
If the problem persists, check the GitHub status page or contact support.