vulnerablecode
jake
vulnerablecode | jake | |
---|---|---|
2 | 1 | |
473 | 101 | |
1.9% | 2.0% | |
8.6 | 7.6 | |
3 days ago | 22 days ago | |
Python | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
vulnerablecode
-
SBOM with VulnerableCode.io
$ git clone https://github.com/nexB/vulnerablecode.git $ cd vulnerablecode $ make envfile $ docker-compose build
- CVE Alerting Platform
jake
-
Software downloaded 30,000 times from PyPI ransacked developers’ machines
Companies like Sonatype and Snyk usually offer free tools to scan packages for vulnerabilities, e.g. https://github.com/sonatype-nexus-community/jake
What are some alternatives?
opencve - CVE Alerting Platform
Scrapy - Scrapy, a fast high-level web crawling & scraping framework for Python.
flake8-bandit - Automated security testing using bandit and flake8.
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
vulscan - Advanced vulnerability scanning with Nmap NSE
python - Official Python client library for kubernetes
CVE-2021-37740 - PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03 by MDT. The bug has been fixed in firmware v3.0.4.
rich - Rich is a Python library for rich text and beautiful formatting in the terminal.
Jira-Lens - Fast and customizable vulnerability scanner For JIRA written in Python
ochrona-cli - A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
grype - A vulnerability scanner for container images and filesystems
core - Online IDE powered by Visual Studio Code ⚡️