#

sca

Here are 57 public repositories matching this topic...

aboutcode-org / scancode-toolkit

🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet, the Google Summer of Code, Azure credits, nexB and other generous sponsors!

Updated Apr 17, 2026
Python

owasp-dep-scan / dep-scan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

security-audit containers dependency-analysis vex compliance cve sca vulnerability-scanners security-tools devsecops reachability-analysis sbom cyclonedx supply-chain-security risk-audit dependency-audit

Updated Mar 9, 2026
Python

awslabs / automated-security-helper

ASH is an extensible, open source SAST, SCA, and IaC security scanner orchestration engine.

aws security scanner iac sca sast awslabs

Updated Apr 15, 2026
Python

Orange-Cyberdefense / grepmarx

A source code static analysis platform for AppSec enthusiasts.

security appsec sca sast

Updated Apr 3, 2026
Python

aboutcode-org / scancode.io

ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Commission, NLnet NGI0, the Google Summer of Code, nexB and others generous sponsors!

docker open-source virtual-machine code-analysis vulnerabilities binary-analysis license spdx sca scancode software-composition-analysis purl package-url license-compliance cyclonedx foss-compliance

Updated Apr 14, 2026
Python

AppThreat / vulnerability-db

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers.

cli database cve nvd vulnerability-detection sca advisories vers purl vulnerability-database

Updated Apr 18, 2026
Python

prancer-io / cloud-validation-framework

prancer platform is an IaC Security engine + Continuous Compliance for your cloud (Azure, AWS, GCP) and Kubernetes environment

security cloud iac governance sca cloudsecurity

Updated Mar 4, 2026
Python

cycodehq / cycode-cli

Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning

security code secrets secure sca sast cycode

Updated Apr 16, 2026
Python

J08nY / pyecsca

Python Elliptic Curve Side-Channel Analysis toolkit.

ecc sca side-channel side-channel-attacks elliptic-curve-cryptography

Updated Mar 8, 2026
Python

aboutcode-org / dejacode

Automate open source license compliance and ensure software supply chain integrity

open-source vulnerabilities license spdx sca scancode purl package-url cyclonedx foss-compliance

Updated Apr 17, 2026
Python

orca

kube-security / orca

This repository contains the container image scanning tool ORCA

cpe sca software-composition-analysis purl sbom-generator sbom-tool

Updated Sep 2, 2025
Python

momosecurity / mosec-pip-plugin

用于检测python项目的第三方依赖组件是否存在安全漏洞。

sca security-tools dependency-management

Updated Aug 11, 2020
Python

ihrishikesh0896 / vulnreach

VulnReach builds on standard SCA output by adding reachability context - proving through static analysis, taint tracking, and live runtime coverage which of the detected CVEs can actually be reached in your application.

dynamic static sca reachability-analysis sbom supply-chain-security

Updated Apr 16, 2026
Python

geminishkv / course_labs

Лабораторные работы по курсам для AppSec, Risk Analysis, Securty Champion: Toolchain, Orchestration, CI/CD, UML, etc.

Updated Apr 15, 2026
Python

tilakthimmappa / pyraider

Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities database.

python security dependency-analysis supply-chain pip vulnerabilities vulnerability-detection sca vulnerability-scanners security-tools devsecops pipenv developer-tool devsecops-pipeline

Updated May 18, 2022
Python

lucidshark

toniantunovi / lucidshark

Ship AI-generated code without the fear

coverage ai linting mcp code-quality sca security-scanner devsecops sast duplication-detection claude-code

Updated Apr 18, 2026
Python

supplyshield / supplyshield

SupplyShield is an open-source application security orchestration framework designed to secure your software supply chain from vulnerabilities.

security sca devsecops sast sbom cyclonedx supply-chain-security

Updated Apr 17, 2026
Python

qscat

qscat / qscat

QSCAT is a QGIS plugin for shoreline change analysis (SCA).

gis qgis qgis-plugin sca coast shoreline coastal-erosion shoreline-change shoreline-change-analysis

Updated Nov 2, 2025
Python

chuckorde / veracode-python

python cli security sca veracode sast

Updated Apr 1, 2022
Python

zadewg / deside

Discrete signal processing tool for side chanel data leakage attacks and analysis. Air-gapped keylogger PoC.

electronics dsp reverse-engineering atm sca

Updated Oct 31, 2023
Python

Improve this page

Add a description, image, and links to the sca topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the sca topic, visit your repo's landing page and select "manage topics."