1 Repo
Matches specific git commit hashes against vulnerability data to identify issues in C/C++ dependencies.
Distinct from Commit Tracking: Focuses on using commit hashes for vulnerability identification rather than general repository update monitoring
Explore 1 awesome GitHub repository matching development tools & productivity · Commit-Based Version Matching. Refine with filters or upvote what's useful.
osv-scanner is a software composition analysis tool and vulnerability scanner that checks project dependencies and container images against the Open Source Vulnerabilities database. It functions as a dependency remediation tool and can be integrated into custom Go applications as a programmable security library. The project distinguishes itself through a remediation workflow that includes an interactive terminal user interface and automated scripting for upgrading vulnerable packages in lockfiles and manifests. It employs call-graph reachability analysis to determine if vulnerable code is act
Identifies vulnerabilities in C/C++ dependencies by matching specific git commit hashes against advisory data.