Leaderboards Open Source Index
GitHub

LFX Platform

Know more about LFX Platform

LFX Insights
Curated Collections

Supply Chain Security

Tools for securing software dependencies and components throughout the supply chain.

The Linux Foundation

by The Linux Foundation

58 projects

Project
Contributors
Organizations
Software value
Harbor
9,320
2,174
$41M
Dependabot
6,490
2,745
$60M
Trivy
4,283
1,179
$17M
OSS-Fuzz
2,956
877
$6.8M
Dependency-Track
2,266
405
$24M
Sigstore
2,138
670
$18M
Open Source Security Foundation (OpenSSF)
1,739
540
$673M
SOPS
1,735
767
$921K
Gitleaks
1,531
399
$831K
ScanCode toolkit
1,403
368
$117M
TruffleHog
1,322
339
$15M
Syft
1,220
348
$28M
Bank-Vaults
1,062
346
$2.5M
Grype
984
280
$4.4M
in-toto
843
248
$27M
CycloneDX Generator (cdxgen)
645
121
$25M
Trivy Action
628
215
$66K
KubeArmor
559
163
$6.3M
The Update Framework (TUF)
543
194
$3.6M
Repository Service for TUF
433
219
$1.2M
OSV-Scanner
430
132
$11M
Retire.js
429
119
$3.1M
OWASP Dependency-Check
373
58
$6.8M
Snyk Broker
368
36
$1.5M
OSV
367
136
$7.7M
Dependency Review Action
358
110
$5.4M
cargo-deny
347
175
$670K
CycloneDX Maven Plugin
304
89
$183K
Ortelius
294
84
$46M
CycloneDX Bill of Materials Specification
266
112
$4M
Keylime
257
63
$9.8M
Teller
Archived
229
88
$184K
Sign CLI
220
61
$1M
Copacetic
206
60
$1.8M
Veraison
202
55
$18M
Open Component Model
182
36
$14M
CycloneDX Python SBOM Generation Tool
178
52
$213K
SLSA
175
68
$40M
FINOS (The Fintech Open Source Foundation)
148
48
$1.4M
CycloneDX Python Library
137
51
$3.9M
Harden-Runner
71
33
$4.3M
Protobom
71
29
$22M
CBOMkit
68
16
$6.5M
Chainloop
63
28
$39M
Grant
48
9
$651K
Open Policy Registry (OPCR)
41
21
$297K
SBOM for Mainframe Applications Working Group
6
3
$4.3K
RustSec Advisory Database
0
0
$0
The project name is "Reproducible Central."
0
0
$0
Looking for a project that’s not listed?