vet
Like
vet is a tool for protecting against open source software supply chain attacks. To adapt to organizational needs, it uses an opinionated policy expressed as Common Expressions Language and extensive package security metadata including:
Cost / License
- Free
- Open Source
Platforms
- Mac
- Linux
- Homebrew
Features
Properties
- Security-focused
No features, maybe you want to suggest one?
Tags
- Supply Chain Security
- security-policy
- Software Composition Analysis
- Cybersecurity
- source-code-analysis
vet News & Activities
Highlights All activities
Recent activities
K0RR added vet as alternative to HarborGuard
K0RR added vet as alternative to Artemis Security Scanner- jdwalker updated vet
POX added vet as alternative to CrowdStrike Falcon, ESET PROTECT Advanced, Check Point Endpoint Security and Palo Alto Networks Prisma Cloud- POX added vet
vet information
Developed by
SafeDep Licensing
Open Source (Apache-2.0) and Free product.Written in
Alternatives
24 alternatives listedSupported Languages
- English
AlternativeTo Category
Security & PrivacyGitHub repository
- 916 Stars
- 81 Forks
- 91 Open Issues
- Updated
No comments or reviews, maybe you want to be first?
Post comment/reviewWhat is vet?
vet is a tool for protecting against open source software supply chain attacks. To adapt to organizational needs, it uses an opinionated policy expressed as Common Expressions Language and extensive package security metadata including:
- Code Analysis to guard against risks that actually matter
- Vulnerabilities from OSV
- Popularity based guardrails to prevent unvetted or risky packages
- Maintenance status of the package
- Extended License Attributes based compliance
- OpenSSF Scorecard based 3rd party OSS risk management
- Direct and Transitive dependency analysis for coverage