Top 1.3% on proxy.golang.org

github.com/ossf/scorecard/v4 v4.13.1

Package main of OSSF Scoreard.
23 versions - Latest release: about 2 years ago - 10 dependent packages - 30 dependent repositories - 5,084 stars on GitHub

github.com/lineaje-labs/scorecard/v4 v4.13.1

Package main of OSSF Scoreard.
29 versions - Latest release: about 2 years ago - 0 stars on GitHub

github.com/preminger/buildkit v0.12.3

concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
56 versions - Latest release: about 2 years ago - 0 stars on GitHub

Top 2.8% on proxy.golang.org

github.com/kubescape/kubescape/v2 v2.9.2

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clust...
293 versions - Latest release: about 2 years ago - 23 dependent repositories - 11,023 stars on GitHub

Top 4.9% on proxy.golang.org

github.com/armosec/kubescape/v2 v2.9.2

293 versions - Latest release: about 2 years ago - 2 dependent repositories

github.com/nirmata/buildkit v0.12.3

concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
1 version - Latest release: about 2 years ago - 0 stars on GitHub

Top 10.0% on proxy.golang.org

github.com/maliksalman/spring-boot-scanner v0.2.0

Scans various platforms for deployed spring-boot applications and their metadata
9 versions - Latest release: about 2 years ago - 0 stars on GitHub

Top 9.5% on proxy.golang.org

github.com/AcidFlow/buildkit v0.0.0-20231010193348-2745715fca23

1 version - Latest release: about 2 years ago

github.com/anubhav06/copa-grype v0.0.2 💰

🧩 Grype plugin for copa
7 versions - Latest release: about 2 years ago - 5 stars on GitHub

Top 4.8% on proxy.golang.org

github.com/openclarity/kubeclarity/e2e v0.0.0-20231003113853-217c5fc8c9f1

KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
46 versions - Latest release: about 2 years ago - 886 stars on GitHub

github.com/cookbook-md/buildkit v0.12.2

concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
1 version - Latest release: about 2 years ago - 0 stars on GitHub

github.com/noqcks/syft v0.0.0-20230920222752-a9e2c4e288e5

CLI tool and library for generating a Software Bill of Materials from container images and filesy...
1 version - Latest release: about 2 years ago - 0 stars on GitHub

github.com/testifysec/protobomit v0.0.0-20230906181136-babea33ec556

Protobomit is a command line tool designed to manage Software Bill of Materials (SBOM) by adding ...
1 version - Latest release: about 2 years ago - 2 stars on GitHub

Top 6.1% on proxy.golang.org

github.com/paketo-buildpacks/node-engine v1.9.0

A Cloud Native Buildpack for Node
325 versions - Latest release: about 2 years ago - 27 stars on GitHub

Top 4.1% on proxy.golang.org

github.com/cloudfoundry/node-engine-cnb v1.9.0

A Cloud Native Buildpack for Node
325 versions - Latest release: about 2 years ago - 19 dependent packages - 1 dependent repositories - 18 stars on GitHub

github.com/khulnasoft-lab/vul v0.44.0

3 versions - Latest release: about 2 years ago - 1 dependent package - 1 dependent repositories - 0 stars on GitHub

github.com/thapabishwa/trivy-kubernetes v0.5.7

Trivy kubernetes library
14 versions - Latest release: about 2 years ago - 0 stars on GitHub

github.com/kastenhq/syft v0.0.0-20230821225854-0710af25cdbe

CLI tool and library for generating a Software Bill of Materials from container images and filesy...
1 version - Latest release: about 2 years ago - 0 stars on GitHub

github.com/khulnasoft/vul v1.0.2

3 versions - Latest release: about 2 years ago - 1 dependent package - 0 stars on GitHub

github.com/khulnasoft/hub v0.0.0-20230818054705-3dc0db12151a

1 version - Latest release: about 2 years ago - 0 stars on GitHub

Top 9.3% on proxy.golang.org

github.com/tsirysndr/dagger v0.8.4

110 versions - Latest release: about 2 years ago

Top 9.7% on proxy.golang.org

gitee.com/ligang-2022/trivy v1.44.1

136 versions - Latest release: about 2 years ago

Top 6.7% on proxy.golang.org

github.com/nikpivkin/trivy v0.45.1

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositori...
1 version - Latest release: about 2 years ago - 0 stars on GitHub

github.com/khulnasoft-labs/griffon v0.0.0-20230804082139-2b6c84e62ef9

2 versions - Latest release: about 2 years ago - 0 stars on GitHub

Top 9.7% on proxy.golang.org

github.com/khulnasoft-labs/vul v0.0.1-beta

1 version - Latest release: about 2 years ago

github.com/verifa/sbom-merge v0.0.1

Experimental tool to merge multiple SPDX SBOMs into single a SBOM
1 version - Latest release: over 2 years ago - 0 stars on GitHub

github.com/cmwylie19/zarf v0.28.3

DevSecOps for Air Gap & Limited-Connection Systems. https://zarf.dev/
2 versions - Latest release: over 2 years ago - 0 stars on GitHub

github.com/sscsb/scoremet/v4 v4.0.0

Security health metrics for Open Source
1 version - Latest release: over 2 years ago - 0 stars on GitHub

github.com/sscsb/Scoremet/v4 v4.0.0

Security health metrics for Open Source
1 version - Latest release: over 2 years ago - 0 stars on GitHub

github.com/boss-net/hub v0.0.0-20230628035318-cab28d89af26

1 version - Latest release: over 2 years ago - 0 stars on GitHub

github.com/nextlinux/govulners v0.0.0-20230626195557-430fc285c7d3

Works seamlessly with Govulners (a fast, modern vulnerability scanner)
1 version - Latest release: over 2 years ago - 0 stars on GitHub

Top 9.7% on proxy.golang.org

github.com/w3security/w3artifact v0.0.0-20230619114141-391d2ec58605

1 version - Latest release: over 2 years ago

Top 9.7% on proxy.golang.org

github.com/w3security/gosbom v0.0.0-20230619073923-3a63256f755d

1 version - Latest release: over 2 years ago

Top 8.2% on proxy.golang.org

github.com/mchmarny/vctl v1.1.2

65 versions - Latest release: over 2 years ago

github.com/mchmarny/disco v1.1.2

Utility for bulk image, license, and vulnerability discovery in containerize workloads on GCP.
65 versions - Latest release: over 2 years ago - 1 dependent repositories - 0 stars on GitHub

github.com/NeXTLinux/griffon v0.32.0

2 versions - Latest release: over 2 years ago - 0 stars on GitHub

github.com/lineaje-labs/tools-golang v0.5.1

Collection of Go packages to work with SPDX files
9 versions - Latest release: over 2 years ago - 0 stars on GitHub

github.com/nextlinux/griffon v0.62.1

101 versions - Latest release: over 2 years ago - 0 stars on GitHub

github.com/suhasgummanirmata/grype v0.62.0

A vulnerability scanner for container images and filesystems
99 versions - Latest release: over 2 years ago - 0 stars on GitHub

github.com/suhasgummanirmata/syft v0.81.0

CLI tool and library for generating a Software Bill of Materials from container images and filesy...
157 versions - Latest release: over 2 years ago - 0 stars on GitHub

github.com/NeXTLinux/gosbom v0.81.0

23 versions - Latest release: over 2 years ago - 0 stars on GitHub

Top 8.7% on proxy.golang.org

github.com/nextlinux/gosbom v0.81.0

157 versions - Latest release: over 2 years ago - 0 stars on GitHub

github.com/sajayantony/obom v0.0.2

Copyright © 2023 Sajay Antony Permission is hereby granted, free of charge, to any person obtain...
2 versions - Latest release: over 2 years ago - 0 stars on GitHub

Top 9.5% on proxy.golang.org

github.com/jeremyrickard/ratify-package-checker v0.0.0-20230505152433-b5a4cb9a800d

A ratify plugin that looks for specific packages
1 version - Latest release: over 2 years ago - 1 stars on GitHub

Top 8.7% on proxy.golang.org

github.com/w3security/syft v1.5.2

2 versions - Latest release: over 2 years ago

github.com/nextlinux/syft v0.79.0

CLI tool and library for generating a Software Bill of Materials from container images and filesy...
2 versions - Latest release: over 2 years ago - 0 stars on GitHub

github.com/nextlinux/grype v0.61.1

1 version - Latest release: over 2 years ago - 0 stars on GitHub

Top 9.5% on proxy.golang.org

github.com/volvo-cars/lingon/magefiles v0.0.0-20230419122405-76e71f8ecbd5

Lingon is a collection of libraries and tools for building platforms using Go.
1 version - Latest release: over 2 years ago - 74 stars on GitHub

Top 8.7% on proxy.golang.org

github.com/5p2o5pe25out/syft v0.0.1

1 version - Latest release: over 2 years ago

Top 8.7% on proxy.golang.org

github.com/5p2O5pe25ouT/syft v0.0.2

2 versions - Latest release: over 2 years ago

Top 8.7% on proxy.golang.org

github.com/lntouchables/syft v0.0.2

2 versions - Latest release: over 2 years ago

Top 8.7% on proxy.golang.org

github.com/vmware/carbon-black-cloud-container-cli v1.9.2

carbon-black-cloud-container-cli (also known as cbctl) is a CLI tool that can be used to scan any...
7 versions - Latest release: over 2 years ago - 1 dependent repositories - 4 stars on GitHub

Top 9.0% on proxy.golang.org

github.com/kbeniwal/vulnerability-adapter v0.0.2

2 versions - Latest release: over 2 years ago - 0 stars on GitHub

Top 8.2% on proxy.golang.org

github.com/defenseunicorns/syft v0.75.0

CLI tool and library for generating a Software Bill of Materials from container images and filesy...
151 versions - Latest release: over 2 years ago - 1 dependent package - 0 stars on GitHub

Top 5.6% on proxy.golang.org

github.com/docker/index-cli-plugin v0.0.35

35 versions - Latest release: over 2 years ago - 1 dependent repositories - 38 stars on GitHub

Top 5.5% on proxy.golang.org

github.com/paketo-buildpacks/jam v1.7.0

21 versions - Latest release: over 2 years ago - 6 dependent packages - 6 dependent repositories - 12 stars on GitHub

Include Past Dependents

Check this option to include packages that no longer depend on this package in their latest version but previously did.