Sign in
Sign up
Explore
Enterprise
Education
Search
Help
Terms of use
About Us
Explore
Enterprise
Education
Gitee Premium
Gitee AI
AI teammates
Sign in
Sign up
Gitee 2025 OpenSource,We need your vote!
Fetch the repository succeeded.
Open Source
>
Development Lib
>
Security Dev
&&
Donate
Please sign in before you donate.
Cancel
Sign in
Scan WeChat QR to Pay
Cancel
Complete
Prompt
Switch to Alipay.
OK
Cancel
Watch
Unwatch
Watching
Releases Only
Ignoring
135
Star
512
Fork
122
GVP
悬镜安全
/
OpenSCA-cli
Code
Issues
8
Pull Requests
0
Wiki
Insights
Pipelines
Service
JavaDoc
PHPDoc
Quality Analysis
Jenkins for Gitee
Tencent CloudBase
Tencent Cloud Serverless
悬镜安全
Aliyun SAE
Codeblitz
SBOM
Don’t show this again
Releases
Latest
v3.0.5
834daa2
2024-10-18 10:11
Compare
v3.0.5
CyberChen
1. WAR 包扫描支持 2. Gitlab 仓库编历扫描脚本 3. 自建漏洞库支持使用列表形式描述组件版本 4. OpenSCA-cli 扫描镜像集成包管理器环境 5. 修复 npm、maven 等已知问题 详见:[更新说明](https://mp.weixin.qq.com/s/7ZK2V7uNswXRnhjQNsJ0hg)
Last committed message:
Merge pull request #276 from SuperChen-CC/docs
v3.0.4
2ada35f
2024-01-15 09:52
Compare
v3.0.4
骆天奇
v3.0.4
Last committed message:
Merge pull request #248 from luotianqi777/sarif
v3.0.3
e83e731
2023-12-25 21:35
Compare
v3.0.3
骆天奇
修复了rar和tar无检出的bug
Last committed message:
Merge pull request #233 from luotianqi777/fix_tar
v3.0.2
6a88b31
2023-12-21 21:18
Compare
v3.0.2
骆天奇
支持通过参数同步检出结果至OpenSCA SaaS
Last committed message:
update: CICD-zh_CN.md
v3.0.1
0b63169
2023-12-18 11:33
Compare
v3.0.1
骆天奇
修复windows下对Python/JAVA/JS一些特殊情况的解析问题 优化Gradle解析能力
Last committed message:
Merge pull request #192 from SuperChen-CC/fix-go-image-vul
v3.0.0
f5e43fc
2023-11-23 16:57
Compare
v3.0.0
CyberChen
- 重构并升级了检测逻辑; - 支持通过 SBOM 输出漏洞和许可信息; - 支持 DSDX 标准的 SBOM; - 在 CMD 中添加了交互式用户界面; - 精简了参数
Last committed message:
Merge pull request #145 from luotianqi777/fix_path
v1.0.13
98552c0
2023-08-25 09:42
Compare
v1.0.13
骆天奇
本地漏洞库多数据格式兼容; 支持SQLite及CSV格式结果报告; 支持英文版HTML报告; 优化JS解析逻辑; 支持跳过解压步骤直接分析文件目录; 支持指定日志文件位置
Last committed message:
walk complete
v1.0.12
a6ee612
2023-07-13 21:09
Compare
v1.0.12
骆天奇
优化许可证检出功能,可通过JSON/HTML/SPDX报告获知许可证信息 支持HTML报告自定义分页; BUG修复
Last committed message:
add license
v1.0.11
ed696b2
2023-03-21 15:43
Compare
v1.0.11
骆天奇
优化Java解析逻辑; 支持打印结果概览及常见报错信息到终端界面; 支持输出Cyclonedx及SWID标准格式SBOM清单; 进一步提升检测速度。
Last committed message:
update README
v1.0.10
7e7eec3
2023-01-17 16:00
Compare
修复部分bug
huyongfeng
1. linux下python项目无检出 2. 使用本地漏洞库时发生空指针错误 3. 更新readme文件
Last committed message:
bugfix (
#36
)
v1.0.9
ef980b0
2022-08-22 12:12
Compare
v1.0.9
huyongfeng
- 提升python解析能力(通过pipenv得到依赖数据,需要提前安装pipenv) - 支持指定maven私服库进行检测,可在配置文件内指定 - 优化版本比较算法
Last committed message:
improve analytical ability for python & custom warehouse pull detec...
v1.0.8
827c020
2022-07-15 16:28
Compare
v1.0.8
huyongfeng
支持spdx格式的sbom清单导出 使用参数-out output.spdx即可输出spdx格式的sbom清单。同时还支持spdx.json、spdx.xml等格式。
Last committed message:
Support exporting SBOM in spdx format (
#24
)
v1.0.7
2f1e236
2022-06-23 11:48
Compare
v1.0.7
骆天奇
支持python解析 gradle文件静态解析 相同组件路径去重
Last committed message:
Merge pull request
#21
from luotianqi777/dev-1.0.7
v1.0.6
4fd6f9f
2022-05-30 15:27
Compare
v1.0.6
骆天奇
添加gradle支持 添加html格式报告
Last committed message:
fix error of json report is empty
v1.0.5
330487c
2022-04-20 15:49
Compare
v1.0.5
骆天奇
添加对erlang语言的支持
Last committed message:
fix rebar.lock
v1.0.4
5df0afb
2022-04-07 14:50
Compare
v1.0.4
骆天奇
支持cargo.lock解析
Last committed message:
add cargo.lock support
v1.0.3
50f0e81
2022-03-24 22:02
Compare
v1.0.3
骆天奇
## 文件格式支持: - go.mod - go.sum - composer.json - yarn.lock - gems.locked ## 漏洞修复: - package.json文件版本解析错误的bug
Last committed message:
fix bug: go no vulnerability
v1.0.1
9668c83
2022-03-11 17:02
Compare
v1.0.1
Qiuyue
修复POM解析中部分exclusion标记的组件没有排除的问题
Last committed message:
fix exclusion bug
v1.0.0
bd76071
2021-12-30 16:18
Compare
v1.0.0
骆天奇
v1.0.0版本
Last committed message:
first commit
Download
To prevent Robot download, Please enter the captcha to continue
Cancel
Download
1
https://gitee.com/XmirrorSecurity/OpenSCA-cli.git
git@gitee.com:XmirrorSecurity/OpenSCA-cli.git
XmirrorSecurity
OpenSCA-cli
OpenSCA-cli
Going to Help Center
Search
Git 命令在线学习
如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
Comment
Repository Report
Back to the top
Login prompt
This operation requires login to the code cloud account. Please log in before operating.
Go to login
No account. Register
huyongfeng
