A systematic approach to creating better documentation.

Search for known vulnerabilities in software using software titles or a CPE 2.3 string

A dependency injection based application framework for Go.

Tools to download or provide CSAF (Common Security Advisory Framework) documents.

Build Container Images In Kubernetes

🔎 Static code analysis engine to find security issues in code.

OpenVEX Specification

A tool to create, transform and attest VEX metadata

Official documentation for getting things done with Nix.

Nix Packages collection & NixOS

Nix, the purely functional package manager

Build Container Images In Kubernetes

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Concept: Community-driven set of Rego-Policies for Software Security & Compliance

A small GO service to sent slack webhooks to a matrix room

A differentiable ray tracer using the PyTorch machine-learning framework in Python.

Freelens FluxCD extension

Modern and easy to use SQL client for MySQL, Postgres, SQLite, SQL Server, and more. Linux, MacOS, and Windows.

Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submissio…

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

Common Expression Language -- specification and binary representation

Documentation of the DevGuard Project

Artifact Ratification Framework (CNCF Sandbox)

JavaScript/TypeScript static analyzer for call graph construction, library usage pattern matching, and vulnerability exposure analysis

Go implementation of witness

Build Container Images In Kubernetes

Go (golang) package with 90 configurable terminal spinner/progress indicators.