Simple Vulnerability Scanner: scan CycloneDX/SPDX SBOMs against OSV with JSON/HTML/SARIF reports

Lightweight python-based OSV vulnerability checker

FastHTML app to audit GitHub users/orgs for vulnerable dependencies using OSV data.

Offline CVE scanner for project dependencies.

🛡 Scan GitHub repositories for dependency vulnerabilities using OSV database. Supports npm, PyPI, RubyGems, Go, and PHP.

A fast, zero-config CLI tool that scans your project dependencies and Dockerfiles for known security vulnerabilities — across 8 ecosystems, powered by free public vulnerability databases, with AI-powered analysis and scheduled scanning.

Multi-ecosystem SBOM scanner with interactive HTML report, dependency tree, and CVE scanning. Supports npm, PyPI, Dart, Maven/Gradle, Rust/Cargo.

Explainable vulnerability triage CLI with OSV ingestion, citations-first output, and lightweight HTML reports.

🛡️ 오픈소스 취약점 분석 (NVD/OSV/GitHub Advisory)

CVE reachability analysis for Python. Stop fixing vulnerabilities that don't affect you. Static + dynamic analysis to cut SCA noise from Snyk, Dependabot, Trivy, and others.

VulnScanner is a local-first, open-source vulnerability intelligence toolkit that syncs NVD, KEV, and EPSS data, scans npm and Python lockfiles, and enforces CI policy gates with offline cache mode, baseline diffing, and JSON/CSV/Markdown/SARIF reports.

A Python tool that fetches, filters, and displays recent CVEs by vendor from OSV.

OSV: OSPF Vulnerability Checking tool

Elevating Signature Verification through Detail-Semantic Integration

Free, open-source vulnerability scanning and reporting for GitHub repositories. Powered by OSSF Scorecard and OSV.

osv.dev API clone

Find and merge CVEs for any package from OSV, GHSA, and NVD.

A CLI tool to scan dependencies for vulnerabilities and flags potentially compromised dependencies (supply chain security).

Multi-purpose security scanner for source code, container images. Supports OSV.dev + EPSS scoring.