34 results found Sort:
- Filter by Primary Language:
- Go (9)
- Python (7)
- Java (5)
- C# (4)
- Rust (2)
- XSLT (1)
- JavaScript (1)
- Kotlin (1)
- TypeScript (1)
- +
A vulnerability scanner for container images and filesystems
Created
2020-05-26
1,290 commits to main branch, last one 4 hours ago
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Created
2020-05-07
2,172 commits to main branch, last one 9 hours ago
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Created
2013-07-16
4,955 commits to master branch, last one 16 hours ago
:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...
Created
2015-07-01
11,095 commits to develop branch, last one a day ago
A suite of tools to automate software compliance checks.
Created
2017-10-19
15,641 commits to main branch, last one 15 hours ago
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the ...
Created
2021-12-30
949 commits to master branch, last one 2 days ago
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container ima...
Created
2020-01-28
352 commits to master branch, last one 12 days ago
A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
Created
2017-11-11
204 commits to master branch, last one about a month ago
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission t...
Created
2019-12-30
1,208 commits to master branch, last one 13 hours ago
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
Created
2022-07-08
80 commits to main branch, last one 3 months ago
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and V...
Created
2017-05-29
978 commits to master branch, last one 15 hours ago
Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.
Created
2023-03-06
605 commits to main branch, last one 9 hours ago
BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generator for binaries.
Created
2023-01-21
229 commits to main branch, last one 10 days ago
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Created
2017-06-04
715 commits to master branch, last one 2 days ago
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Created
2020-10-22
403 commits to main branch, last one 23 days ago
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
Created
2018-11-15
623 commits to main branch, last one 3 days ago
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Created
2018-10-02
937 commits to master branch, last one 6 days ago
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
Created
2020-07-31
118 commits to master branch, last one 4 months ago
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
Created
2018-05-30
451 commits to master branch, last one about a month ago
SBOM quality score - Quality metrics for your sboms
Created
2023-01-31
369 commits to main branch, last one 2 days ago
creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
Created
2017-06-04
504 commits to master branch, last one 13 days ago
A suite of utilities to help with software supply chain challenges on nix targets
Created
2022-12-08
244 commits to main branch, last one 14 days ago
Enrich SBOMs with data from third party services
Created
2023-04-19
132 commits to main branch, last one 3 days ago
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...
Created
2020-09-10
961 commits to main branch, last one a day ago
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
Created
2019-05-21
1,123 commits to main branch, last one 9 days ago
Utility that provides an API platform for validating, querying and managing BOM data
Created
2023-01-10
285 commits to main branch, last one 7 days ago
CycloneDX SBOM Model and Utils for Creating and Validating BOMs
Created
2018-05-30
1,122 commits to master branch, last one 7 hours ago
A BOM repository server for distributing CycloneDX BOMs
Created
2021-05-27
231 commits to main branch, last one about a year ago
Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
Created
2022-07-23
867 commits to main branch, last one 6 days ago
Python implementation of OWASP CycloneDX
Created
2021-08-27
652 commits to main branch, last one a day ago