Skip to content
View jeremylong's full-sized avatar
997 followers · 5 following

Sponsors

@jpcmonster
@lastcmaster
@rieckpil
@darranl
@premium-minds
@LucaBlackDragon

Achievements

Achievement: Pair Extraordinairex3Achievement: Starstruckx4Achievement: YOLOAchievement: QuickdrawAchievement: Public SponsorAchievement: Arctic Code Vault ContributorAchievement: Pull Sharkx3

Achievements

Achievement: Pair Extraordinairex3Achievement: Starstruckx4Achievement: YOLOAchievement: QuickdrawAchievement: Public SponsorAchievement: Arctic Code Vault ContributorAchievement: Pull Sharkx3

Highlights

  • Pro

Organizations

@OWASP

Block or report jeremylong

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Pinned Loading

  1. dependency-check/DependencyCheck Public

    OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

    Java 6.8k 1.3k

  2. dependency-check/dependency-check-gradle Public

    The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for known, published vulnerabilities.

    Groovy 370 95

  3. open-vulnerability-clients Public

    Java library for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnerabilities, etc.)

    Java 5 3

  4. open-vulnerability-cli Public

    A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mirror the NVD.

    Java 141 44

  5. malicious-dependencies Public

    Demonstrates how a malicious dependency could negatively impact the build output.

    Java 25 10

8,561 contributions in the last year

Contribution Graph
Day of Week March April May June July August September October November December January February March
Sunday
Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Learn how we count contributions
Less
No contributions.
Low contributions.
Medium-low contributions.
Medium-high contributions.
High contributions.
More

Contribution activity

March 2025

Created 26 commits in 6 repositories

Created a pull request in package-url/packageurl-java that received 10 comments

fix: make jspecify a compile time/optional dependency

As jspecify is just a compile-time annotation, I believe this should be marked as an optional dependency. Other examples of this: https://github.c…

+2 −0 lines changed 10 comments
Opened 15 other pull requests in 5 repositories

Created an issue in package-url/purl-spec that received 1 comment

Proposal: add servicenow as a PURL-TYPE

ServiceNow has a large ecosystem of applications written by ServiceNow, partners, consulting firms, customers, etc. A large number of these applica…

1 comment
Opened 1 other issue in 1 repository
package-url/packageurl-java 1 closed
Loading