This is your work, valued

Chicago

Steve Springett

Elite
@stevespringett

I build stuff, I break stuff, I develop stuff to protect stuff. Creator of @DependencyTrack. @CycloneDX Chair. @Ecma-TC54 Founder. Core team of @package-url

nist-data-mirror. A simple Java command-line utility to mirror the CVE JSON data from NIST.

213

disable-webassembly. Browser hacks to disable WebAssembly (WASM)

124

threatmodel-sdk. A Java library for parsing and programmatically using threat models

83

Alpine. An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies

74

CPE-Parser. A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

56

cvss-calculator. A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors

53

vulndb-data-mirror. A simple Java command-line utility to mirror the entire contents of VulnDB.

48

owasp-risk-rating-calculator. A Java library for programmatically calculating OWASP Risk Rating scores

19

headlines. A collection of HTTP response headers to elevate the security of your web app!

9

touchdraw-aws-stencil-library. Amazon Web Services Stencil Library for TouchDraw

6

maven-uuid-generator. The Maven UUID Generator Plugin generates a unique UUID for each build and assigns the value to project.build.uuid

5

json-schema-for-humans. Quickly generate HTML documentation from a JSON schema

1

schemastore. A collection of JSON schema files including full API

1

stevespringett.github.io.

1

18f.gsa.gov. The 18F website

1

cocoapods-dependencies. Shows a project's CocoaPods dependency graph

1

owasp-masvs. The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

1