vulnerability scanning

Hoppr-Cop is CLI and Hoppr Plugin that generates high quality vulnerability information from a cyclone-dx Software Bill of Materials (SBOM) by aggregating data from multiple vulnerability databases.

cdt-pma, part of the crypto-detection-tool project, scans installed packages via apt, identifying insecure ones and reporting potential dependencies affected for comprehensive vulnerability assessment