noqcks's Stars
coder/code-server
VS Code in the browser
ent/ent
An entity framework for Go
Skyvern-AI/skyvern
Automate browser-based workflows with LLMs and Computer Vision
langfuse/langfuse
🪢 Open source LLM engineering platform: LLM Observability, metrics, evals, prompt management, playground, datasets. Integrates with LlamaIndex, Langchain, OpenAI SDK, LiteLLM, and more. 🍊YC W23
briefercloud/layerform
Layerform helps engineers create reusable environment stacks using plain .tf files. Ideal for multiple "staging" environments.
axflow/axflow
The TypeScript framework for AI development
Legit-Labs/legitify
Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
openpubkey/openpubkey
Reference implementation of OpenPubkey
ossillate-inc/packj
Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
CycloneDX/cdxgen
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. GPT: https://chatgpt.com/g/g-673bfeb4037481919be8a2cd1bf868d2-cdxgen
matusf/openapi-fuzzer
Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!
slsa-framework/slsa-github-generator
Language-agnostic SLSA provenance generation for Github Actions
in-toto/witness
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
CycloneDX/specification
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
notaryproject/notation
A CLI tool to sign and verify artifacts
xeol-io/xeol
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
twentyhq/favicon
100% free and open-source favicon provider
buildsec/frsca
gkampitakis/go-snaps
Jest-like snapshot testing in Go 📸
xeol-io/bumpgen
bumpgen is an AI agent that upgrades npm packages
parea-ai/parea-sdk-py
Python SDK for experimenting, testing, evaluating & monitoring LLM-powered applications - Parea AI (YC S23)
wooorm/npm-high-impact
The high-impact (popular) packages of npm
Skyvern-AI/wyvern
interlynk-io/sbomasm
SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.
skybrush-io/studio-blender
Skybrush Studio for Blender - a Blender addon for designing and validating drone shows
edoardottt/depsdev
CLI client (and Golang module) for deps.dev API. Free access to dependencies, licenses, advisories, and other critical health and security signals for open source package versions.
in-toto/attestation-verifier
Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts
fnxpt/cyclonedx-merge
Tool to merge cyclonedx files
Common-Lifecycle-Enumeration/specification
parea-ai/parea-sdk-ts
TypeScript SDK for experimenting, testing, evaluating & monitoring LLM-powered applications - Parea AI (YC S23)