cerrussell
Staff Security Engineer @AppThreat
Funding Links: https://github.com/sponsors/cerrussell
- Name: Caroline Russell
- Location: Durham, North Carolina, US
- Company: @AppThreat
- Kind: user
- Followers: 23
- Following: 18
- Total stars: 3
- Repositories count: 43
- Created at: 2023-05-31T07:31:09.138Z
- Updated at: 2025-05-16T14:33:48.642Z
- Last synced at: 2025-05-16T14:33:48.641Z
GitHub Sponsors Profile
A few of the projects I'm working on at the moment:
OWASP-depscan/dep-scan: Fully open-source security audit based on known vulnerabilities and advisories for project dependencies. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI, and Google CloudBuild. No server is required!
CycloneDx/cdxgen: Creates CycloneDX Software Bill-of-Materials (SBOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI//CD pipeline with automatic submission to Dependency Track server.
AppThreat/atom-tools: Collection of tools for use with AppThreat/atom slices. Automated generation of OpenAPI specs, finding endpoints to match with SAST findings.
AppThreat/custom-json-diff: Tool to allow customizable diffing of json documents. Also offers analysis comparing two CycloneDx BOMs.
- Current Sponsors: 0
- Past Sponsors: 0
- Total Sponsors: 0
- Minimum Sponsorship: $1.00
Featured Works
CycloneDX/cdxgen
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submissio…
Language: JavaScript - Stars: 695AppThreat/vulnerability-db
Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers.
Language: Python - Stars: 118owasp-dep-scan/dep-scan
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container …
Language: Python - Stars: 1112owasp-dep-scan/blint
BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generator for binaries.
Language: Python - Stars: 363AppThreat/atom-tools
Collection of tools for use with AppThreat/atom.
Language: Python - Stars: 5AppThreat/custom-json-diff
A utility to compare json documents containing dynamically-generated fields.
Language: Python - Stars: