Skip to content
View jeremylong's full-sized avatar
1k followers · 5 following

Sponsors

@jpcmonster
@lastcmaster
@rieckpil
@kokkoniemi
@darranl
@premium-minds
@LucaBlackDragon

Achievements

Achievement: Pair Extraordinairex3Achievement: Starstruckx4Achievement: YOLOAchievement: QuickdrawAchievement: Public SponsorAchievement: Arctic Code Vault ContributorAchievement: Pull Sharkx3

Achievements

Achievement: Pair Extraordinairex3Achievement: Starstruckx4Achievement: YOLOAchievement: QuickdrawAchievement: Public SponsorAchievement: Arctic Code Vault ContributorAchievement: Pull Sharkx3

Highlights

  • Pro

Organizations

@OWASP

Block or report jeremylong

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Lists (1)

Sort Name ascending (A-Z)
Sort by
Name ascending (A-Z) Name descending (Z-A) Newest Oldest Last updated

Stars

Showing results

joernio / joern

Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc

Scala 3,057 407 Updated Apr 3, 2026

stevespringett / cvss-calculator

A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors

Java 51 24 Updated Jan 22, 2026

snarktank / ai-dev-tasks

A simple task management system for managing AI dev agents

7,670 1,739 Updated Nov 5, 2025

stevespringett / CPE-Parser

A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

Java 54 18 Updated Jan 26, 2026

OWASP / owasp-java-encoder

The OWASP Java Encoder is a Java 1.5+ simple-to-use drop-in high-performance encoder class with no dependencies and little baggage. This project will help Java web developers defend against Cross S…

Java 533 123 Updated Nov 17, 2025

gocd / gocd

GoCD - Continuous Delivery server main repository

Java 7,388 978 Updated Apr 3, 2026

pixee / java-security-toolkit

A set of security APIs meant to help secure Java code

Java 23 2 Updated Mar 4, 2026

pixee / codemodder-java

a framework for building java codemods

Java 40 7 Updated Apr 4, 2026

jeremylong / malicious-dependencies

Demonstrates how a malicious dependency could negatively impact the build output.

Java 25 12 Updated Aug 11, 2023

saschawildgrube / servicenow-codesanity

Contains instance scan checks to validate source code.

15 177 Updated Mar 31, 2026

pavanw3b / sh00t

Security Testing is not as simple as right click > Scan. It's messy, a tough game. What if you had missed to test just that one thing and had to regret later? Sh00t is a highly customizable, intell…

JavaScript 276 64 Updated Aug 30, 2024

semver4j / semver4j

Semantic versioning for Java apps.

Java 109 22 Updated Mar 27, 2026

dorongold / gradle-task-tree

Gradle plugin that adds a 'taskTree' task that prints task dependency tree

Groovy 902 57 Updated Sep 21, 2025

gmu-swe / phosphor

Phosphor: Dynamic Taint Tracking for the JVM

Java 182 76 Updated Jun 17, 2025

dependency-check / dependency-check-gradle

The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for known, published vulnerabilities.

Groovy 386 100 Updated Apr 3, 2026

dependency-check / DependencyCheck

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Java 7,479 1,397 Updated Apr 2, 2026

jeremylong / open-vulnerability-cli

A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mirror the NVD.

Java 165 45 Updated Apr 2, 2026

Mattraks / delete-workflow-runs

An action to delete workflow runs in a repository.

JavaScript 238 114 Updated Apr 3, 2026

scribe-public / gitgat

Evaluate source control (GitHub) security posture

Open Policy Agent 252 13 Updated Mar 8, 2023

jobrunr / jobrunr

An extremely easy way to perform background processing in Java. Backed by persistent storage. Open and free for commercial use.

Java 2,940 314 Updated Apr 3, 2026

tomasbjerre / violations-lib

Java library for parsing report files from static code analysis.

Java 156 42 Updated Mar 28, 2026

weggli-rs / weggli

weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases.

Rust 2,486 143 Updated Jul 12, 2024

librosa / librosa

Python library for audio and music analysis

Python 8,296 1,044 Updated Mar 24, 2026

Storyyeller / enjarify

Forked from google/enjarify
Python 952 116 Updated Nov 7, 2021

Storyyeller / Krakatau

Java decompiler, assembler, and disassembler

Rust 2,192 236 Updated Jun 2, 2025

reznikmm / upload-bintray-action

Bintray file uploader action

JavaScript 3 1 Updated Feb 13, 2021

tree-sitter / tree-sitter-java

Java grammar for tree-sitter

JavaScript 252 136 Updated Dec 15, 2025

spoofzu / jvmxray

Externalize Java application access to protected resources as log messages.

Java 44 5 Updated Apr 2, 2026

tomasbjerre / violation-comments-to-github-lib

A library for commenting GitHub with violations from static code analyzer reports.

Java 21 7 Updated Jul 30, 2023

hub4j / github-api

Java API for GitHub

Java 1,239 775 Updated Apr 1, 2026
Next