Skip to content
Avatar
222 followers · 2 following

Achievements

Arctic Code Vault Contributor

Achievements

Arctic Code Vault Contributor

Highlights

  • Pro
  • 23 discussions answered

Organizations

@maintainers @CycloneDX @package-url @DependencyTrack @ossf
Block or Report

Block or report stevespringett

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Pinned

  1. DependencyTrack/dependency-track Public

    Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

    Java 1.1k 304

  2. CycloneDX/specification Public

    Software Bill of Material (SBOM) standard designed for use in application security contexts and supply chain component analysis

    XSLT 142 26

  3. package-url/purl-spec Public

    A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby

    251 71

  4. OWASP/Software-Component-Verification-Standard Public

    Software Component Verification Standard (SCVS)

    Python 75 16

  5. CPE-Parser Public

    A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

    Java 28 14

  6. cvss-calculator Public

    A Java library for calculating CVSSv2 and CVSSv3 scores and vectors

    Java 24 17

1,820 contributions in the last year

Apr May Jun Jul Aug Sep Oct Nov Dec Jan Feb Mar Mon Wed Fri
Learn how we count contributions
Less More

Contribution activity

April 2022

Created 46 commits in 7 repositories
Opened 1 pull request in 1 repository
stevespringett/Alpine 1 merged

Created an issue in DependencyTrack/gh-upload-sbom that received 1 comment

Release v1.1.0

There have been a few PRs lately and we need to release v1.1.0 as a result. Not sure how to release new actions. There doesn't appear to be a relea…

1 comment
Answered 1 discussion in 1 repository
DependencyTrack/dependency-track

Seeing something unexpected? Take a look at the GitHub profile guide.