Skip to main content

Introduction to OSV
API
Data sources
FAQ
Third Party Tools
Contributing
- Architecture
- Contributing Data from REST API

OSV Schema
OSV-Scanner

This site uses Just the Docs, a documentation theme for Jekyll.

OSV.dev on GitHub

Third party tools

There are community tools that use OSV. Note that these are community built tools and unsupported by the core OSV maintainers.

Betterscan.io: Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC)
bomber
Cortex XSOAR
dependency-management-data
Dependency-Track
dep-scan
EZE-CLI: The one stop shop for security testing in modern development
G-Rath/osv-detector: A scanner that uses the OSV database.
GUAC
it-depends
.NET client library and support for the schema
OSS Review Toolkit
Packj
pip-audit
Renovate
rosv: an R package to access the OSV database and help administer Posit Package Manager
Rust client library
Skjold: Security audit python project dependencies against several security advisory databases
Trivy
IronDome: SCA scanner for Ruby applications

Feel free to send a PR to add your project here.