Knowledge Tree
Sonatype OSS Index
Facts (13)
Sources
bureado/awesome-software-supply-chain-security - GitHub github.com 13 facts
claimThe sonatype-nexus-community/ahab tool scans for vulnerabilities in apt or yum managed dependencies using Sonatype OSS Index.
claimThe sonatype-nexus-community/cheque tool checks for vulnerabilities in C/C++ dependencies using Sonatype OSS Index.
claimThe sonatype-nexus-community/oysteR tool secures R dependencies against known vulnerabilities using Sonatype OSS Index.
claimThe sonatype-nexus-community/jake tool checks Python environments and dependencies for known vulnerabilities using Sonatype OSS Index.
claimThe illikainen/ossaudit tool audits Python packages for known vulnerabilities using Sonatype OSS Index.
claimThe sonatype-nexus-community/nancy tool checks for vulnerabilities in Golang dependencies using Sonatype OSS Index.
claimThe sonatype/ossindex-maven integration provides Maven plugin and enforcer rules for the Sonatype OSS Index.
claimThe sonatype-nexus-community/chelsea tool interacts with Sonatype OSS Index to check for vulnerabilities in Ruby Gems.
claimThe sonatype-nexus-community/auditjs tool audits JavaScript projects using Sonatype OSS Index or Nexus Lifecycle.
claimThe sonatype-nexus-community/bach tool interacts with Sonatype OSS Index to check for vulnerabilities in PHP Composer dependencies.
claimThe sonatype-nexus-community/scan-gradle-plugin is a Gradle plugin designed for scanning dependencies using Sonatype OSS Index and Nexus Lifecycle.
referenceSonatype OSS Index is a free service that catalogs open source components and identifies known vulnerabilities, accessible via web and REST API.
claimThe sonatype-nexus-community/cargo-pants tool checks for vulnerabilities in Rust Cargo dependencies using Sonatype OSS Index.