|Project Name||Stars||Downloads||Repos Using This||Packages Using This||Most Recent Commit||Total Releases||Latest Release||Open Issues||License||Language|
|Clair||9,403||35||19||2 days ago||139||March 21, 2022||11||apache-2.0||Go|
|Vulnerability Static Analysis for Containers|
|Scanners Box||7,014||a month ago||2|
|A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑|
|Brakeman||6,616||5,984||108||2 days ago||144||August 10, 2022||99||other||Ruby|
|A static analysis security vulnerability scanner for Ruby on Rails applications|
|Grype||5,429||6||20 hours ago||161||September 20, 2022||213||apache-2.0||Go|
|A vulnerability scanner for container images and filesystems|
|Pyt||2,005||11||1||2 years ago||15||November 01, 2018||20||gpl-2.0||Python|
|A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications|
|Awesome Golang Security||1,768||5 months ago||3|
|Awesome Golang Security resources 🕶🔐|
|Anchore Engine||1,528||2 months ago||249||apache-2.0||Python|
|A service that analyzes docker images and scans for vulnerabilities|
|Appshark||1,052||a month ago||13||apache-2.0||Kotlin|
|Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.|
|Bearer||904||3||3||20 hours ago||109||May 03, 2019||27||other||C|
|Code security scanning tool (SAST) that discover, filter and prioritize security risks and vulnerabilities leading to sensitive data exposures (PII, PHI, PD).|
|Horusec||869||2||8 days ago||40||November 30, 2021||70||apache-2.0||Go|
|Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.|
main branch may be in an unstable or even broken state during development.
Please use releases instead of the
main branch in order to get stable binaries.
Clair is an open source project for the static analysis of vulnerabilities in application containers (currently including OCI and docker).
Clients use the Clair API to index their container images and can then match it against known vulnerabilities.
Our goal is to enable a more transparent view of the security of container-based infrastructure.
Thus, the project was named
Clair after the French term which translates to clear, bright, transparent.
The book contains all the documentation on Clair's architecture and operation.
See CONTRIBUTING for details on submitting patches and the contribution workflow.
Clair is under the Apache 2.0 license. See the LICENSE file for details.