Third party tools
There are community tools that use OSV. Note that these are community built tools and unsupported by the core OSV maintainers.
- Betterscan.io: Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC)
- bomber
- Cortex XSOAR
- Dependency-Track
- dep-scan
- EZE-CLI: The one stop shop for security testing in modern development
- Golang support for the schema
- G-Rath/osv-detector: A scanner that uses the OSV database.
- it-depends
- .NET client library and support for the schema
- OSS Review Toolkit
- Packj
- pip-audit
- Renovate
- Rust client library
- Skjold: Security audit python project dependencies against several security advisory databases
- Trivy
Feel free to send a PR to add your project here.