A vulnerability scanner for container images and filesystems

GUAC aggregates software security metadata into a high fidelity graph database.

Creates CycloneDX Software Bill of Materials (SBOM) from Go modules

A tool to create, transform and attest VEX metadata

Utility that provides an API platform for validating, querying and managing BOM data

Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)

vexctl is a tool to attest VEX impact statements

silence negligible CVE alerts using LLM

一个简单易用的 tcp 网络通信框架 - A simple tcp framework

the basic 2D game physics and vex code made by go with ebiten game lib