all InfoSec news
Dep-Scan - Fully Open-Source Security Audit For Project Dependencies Based On Known Vulnerabilities And Advisories. Supports Both Local Repos And Container Images. Integrates With Various CI Environments Such As Azure Pipelines, CircleCI, Google Clou
KitPloit - PenTest Tools! www.kitploit.com
dep-scan is a fully open-source security audit tool for project dependencies based on known vulnerabilities, advisories and license limitations. Both local repositories and container images are supported as input. The tool is ideal for CI environments with built-in build breaker logic.
If you have just come across this repo, probably the best place to start is to checkout the parent project slscan which include depscan along with a number of other tools.
Features
- Local repos and container image based scanning …
audit azure container google images local project risk audit sbom scan security security audit vulnerabilities vulnerability scanners