Leaderboards Open Source Index
GitHub

LFX Platform

Know more about LFX Platform

LFX Insights
Curated Collections

Supply Chain Security

Tools for securing software dependencies and components throughout the supply chain.

The Linux Foundation

by The Linux Foundation

49 projects ・ Updated 14 Mar 2025

Project
Contributors
Organizations
Software value
Harbor
9,322
2,174
$41M
Dependabot
6,494
2,746
$60M
Trivy
4,285
1,178
$17M
OSS-Fuzz
2,955
877
$6.8M
Dependency-Track
2,267
405
$24M
Sigstore
2,143
672
$18M
Open Source Security Foundation (OpenSSF)
1,744
542
$673M
SOPS
1,736
767
$922K
Gitleaks
1,532
400
$831K
ScanCode toolkit
1,403
368
$117M
TruffleHog
1,322
339
$15M
Syft
1,220
348
$28M
Bank-Vaults
1,062
346
$2.5M
Grype
984
280
$4.4M
in-toto
843
248
$27M
CycloneDX Generator (cdxgen)
645
121
$25M
Trivy Action
629
215
$66K
KubeArmor
559
163
$6.3M
The Update Framework (TUF)
543
194
$3.6M
Repository Service for TUF
435
220
$1.2M
OSV-Scanner
432
133
$11M
Retire.js
429
119
$3.5M
OWASP Dependency-Check
373
58
$6.8M
Snyk Broker
368
36
$1.5M
OSV
367
136
$7.7M
Dependency Review Action
358
110
$5.4M
cargo-deny
348
176
$670K
CycloneDX Maven Plugin
304
89
$183K
Ortelius
294
84
$46M
CycloneDX Bill of Materials Specification
267
113
$4M
Keylime
257
63
$9.8M
Teller
Archived
230
89
$184K
Sign CLI
220
61
$1M
Veraison
212
55
$18M
Copacetic
206
60
$1.8M
Open Component Model
183
36
$15M
CycloneDX Python SBOM Generation Tool
178
52
$213K
SLSA
175
68
$40M
FINOS (The Fintech Open Source Foundation)
148
48
$1.4M
CycloneDX Python Library
137
51
$3.9M
Harden-Runner
71
32
$4.3M
Protobom
71
29
$22M
CBOMkit
68
16
$6.5M
Chainloop
64
29
$39M
Grant
48
9
$651K
Open Policy Registry (OPCR)
41
22
$296K
SBOM for Mainframe Applications Working Group
6
3
$4.3K
RustSec Advisory Database
0
0
$0
The project name is "Reproducible Central."
0
0
$0
Looking for a project that’s not listed?