jeremylong

Jeremy Long's repositories

DependencyCheck

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Language:JavaApache-2.04062 154 2995

musical-octo-carnival

A journey through the insecure defaults in GitHub Actions - wait who committed code to my repo?

Language:JavaApache-2.03 2 2

GrokAssembly

Mono/.NET Project to get information about an assembly. Primarily for OWASP Dependency Check

Language:C#Apache-2.02 30

Bypassing-Required-Reviews

100

checkmarx-github-action

Checkmarx Scan Github Action

Language:JavaScriptGPL-3.0100

dependency-check-plugin

Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

Language:JavaApache-2.01 10

nist-data-mirror

A simple Java command-line utility to mirror the CVE XML and JSON data from NIST.

Language:JavaApache-2.01 10

lein-dependency-check

A leiningen plugin for detecting vulnerable project dependencies

Language:ClojureMIT010

sbt-dependency-check

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs).

Language:ScalaApache-2.0010

Audio

Teensy Audio Library

Language:C++000

avdweb_DAC16

Cheap 16 bit DAC AD5662 for the Arduino

Language:C++MIT000

burp-retire-js

Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.

Language:JavaScriptApache-2.0000

class-file-format-rule

A maven-enforcer rule that ensures dependencies do not exceed the required class file format for a particular JVM.

Language:JavaApache-2.001 2

CPE-Parser

A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

Language:JavaApache-2.0010

cx-flow

Checkmarx Scan and Result Orchestration

Apache-2.0000

homebrew-core

🍻 Default formulae for the missing package manager for macOS

Language:RubyBSD-2-Clause000

jobrunr

An extremely easy way to perform background processing in Java. Backed by persistent storage. Open and free for commercial use.

Language:JavaNOASSERTION000

juice-shop-assessment

Presentation and code from OWASP AppSec DC 2019 - "Testing With Your Left Foot Forward"

Language:JavaApache-2.0010

librosa

Python library for audio and music analysis

Language:PythonISC000

Looper

Teensy based audio looper

Language:C++000

northpaw

Copy of information on the Northpaw from https://sensebridge.net/projects/northpaw/instructions/

Language:C++NOASSERTION010

odc-falsepositives

Language:Python01 7

ossindex-public

Sonatype OSS Index - Public

Language:JavaApache-2.0000

packageurl-java

Java/JVM implementation of the package url spec

Language:JavaMIT010

purl-spec

A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby

020

retire.js

scanner detecting the use of JavaScript libraries with known vulnerabilities

Language:JavaScriptNOASSERTION000

sonic

Simple library to speed up or slow down speech

Language:CApache-2.0000

violation-comments-lib

Library for commenting things with violations from static code analysis.

Apache-2.0000

violations-lib

Java library for parsing report files from static code analysis.

Language:JavaApache-2.0000

vulnSample

Language:JavaApache-2.0010