This V2 release builds upon the foundation we laid with OSV-SCALIBR and adds significant new capabilities to OSV-Scanner, making it a comprehensive vulnerability scanner and remediation tool with broad support for formats and ecosystems. (Google)
#securityland #skillslab #securityarsenal #cybertools #vulnerabilitymanagement #osvscanner #google #opensource
Did you miss FOSSlife Weekly yesterday? Read it now and subscribe free to get it every Thursday! https://app.moosend.com/show_campaign/022a269b-4703-4527-9c27-15cf001f8d46 #OpenSource #ClimateChange #energy #BugBounty #Linux #OpenMapping #SHA1 #JavaScript #games #OSVscanner #jobs #events
Is this a tool that can help with web app pentesting? What would you use it for?
https://osv.dev/
#osvscanner #google
Open source vulnerability scanner launched by #Google https://www.fosslife.org/google-launches-open-source-vulnerability-scanner #OSVScanner #OpenSource #vulnerability #tools #developer #database #FOSS
OSV-Scanner:
➡️ Find existing vulnerabilities affecting your project's dependencies.
➡️ Provides an officially supported frontend to the OSV database that connects a project’s list of dependencies with the vulnerabilities that affect them.
➡️ Each advisory comes from an open and authoritative source (e.g. the RustSec Advisory Database)
➡️ Anyone can suggest improvements to advisories, resulting in a very high quality database
➡️ The OSV format unambiguously stores information about affected versions in a machine-readable format that precisely maps onto a developer’s list of packages
Repo:
https://github.com/google/osv-scanner
Blog:
https://security.googleblog.com/2022/12/announcing-osv-scanner-vulnerability.html?m=1
#golang
