Pinned Repositories
ASVS
Application Security Verification Standard
cdxgen
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. Slack: https://cyclonedx.slack.com/archives/C04NFFE1962
csaf-documentation
OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee, including documentation
cyclonedx.org
Public website
django-DefectDojo
DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
DrHeader
drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
flake8-your-pr
Github action to flake8 lint your pull requests
license-expression
Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX or any other license id scheme.
openvex_spec
OpenVEX Specification
react-admin-8038
A frontend Framework for building B2B applications running in the browser on top of REST/GraphQL APIs, using ES6, React and Material Design
StefanFl's Repositories
StefanFl/ASVS
Application Security Verification Standard
StefanFl/cdxgen
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. Slack: https://cyclonedx.slack.com/archives/C04NFFE1962
StefanFl/csaf-documentation
OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee, including documentation
StefanFl/cyclonedx.org
Public website
StefanFl/django-DefectDojo
DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
StefanFl/DrHeader
drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
StefanFl/flake8-your-pr
Github action to flake8 lint your pull requests
StefanFl/openvex_spec
OpenVEX Specification
StefanFl/react-admin-8038
A frontend Framework for building B2B applications running in the browser on top of REST/GraphQL APIs, using ES6, React and Material Design
StefanFl/sbomify.com
sbomify.com marketing site
StefanFl/secobserve_github_actions
StefanFl/semgrep-docs
Documentation of Semgrep: a fast, open-source, static analysis tool.
StefanFl/secobserve_actions_templates
GitHub actions and GitLab CI templates run various vulnerability scanners, upload the results into SecObserve and make the results of the scans available for download as artefacts in JSON format.
StefanFl/trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more