dep-scan security audit

dep-scan is a fully open-source security audit tool for project dependencies based on known vulnerabilities, advisories and license limitations. Both local repositories and container images are supported as input. The tool is ideal for CI environments with built-in build breaker logic.

Scan most application code - local repos, Linux container images, Kubernetes manifests, and OS - to identify known CVEs with prioritization

GitHub - AppThreat/dep-scan: Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI, Google CloudBuild. No server required!GitHub

PreviousSoldr endpoint detection scanner Nextsmbeagle filesahare audit tool

Last updated 10 months ago