raven
« Back to VersTracker
Description:
Risk Analysis and Vulnerability Enumeration for CI/CD
Type: Formula  |  Latest Version: 1.0.9@0  |  Tracked Since: Oct 13, 2025
Links: Homepage  |  @cycode  |  formulae.brew.sh
Category: Security
Tags: security devops ci-cd vulnerability-scanner iac
Install: brew install raven
About:
Raven is a security tool designed to analyze dependencies and infrastructure-as-code templates within CI/CD pipelines. It identifies risks and vulnerabilities early in the development lifecycle, providing actionable insights to harden your supply chain security.
Key Features:
  • SCA (Software Composition Analysis) for dependency vulnerabilities
  • IaC (Infrastructure as Code) misconfiguration detection
  • CI/CD pipeline security auditing
  • SBOM (Software Bill of Materials) generation
Use Cases:
  • Preventing vulnerable dependencies from entering production
  • Auditing Terraform and Kubernetes manifests for security flaws
  • Integrating security scanning into GitHub Actions or GitLab CI
Alternatives:
  • Trivy – Trivy is a comprehensive scanner for containers and filesystems, whereas Raven focuses specifically on CI/CD pipeline context and IaC.
  • Snyk – Snyk offers a broader commercial platform with dependency management, while Raven provides an open-source alternative focused on CI analysis.
Version History
Detected Version Rev Change Commit
Oct 13, 2025 2:44am 0 VERSION_BUMP 260184b9
Oct 13, 2024 10:22am 0 VERSION_BUMP 258de5b0
Sep 14, 2024 1:52am 0 VERSION_BUMP 3f20227f
« Back to VersTracker  |  Browse Packages  |  About