This Tool Demo covers following tools where the speaker has contributed or authored
VET
VET
Abstract
vet is a tool for identifying risks in open source software supply chain. It helps security teams setup policy driven guardrails against vulnerable & malicious code from open sources. Using an in-built code analysis engine, vet is able to identify contextual risks arising due to OSS dependencies specific to an application’s code base including protection against malicious “code” coming from open source ecosystems.