reddit hackernews mail facebook facebook linkedin
OSV

OSV

A distributed vulnerability database for Open Source.
#cves   #scanner   #vulnerabilities  
https://osv.dev
https://github.com/google/osv.dev

An open, precise, and distributed approach to producing and consuming vulnerability information for open source.
It provides a vulnerability database, vulnerability scanner and remediation tools.

OSV-Scanner also provides reusable GitHub workflows that can be easily integrated into CI/CD pipelines to provide continuous vulnerability scanning coverage. This can scan newly added dependencies in pull requests for introduced vulnerabilities, as well as perform regular vulnerability scans for the entire project.