23 results found Sort:

DependencyTrack
dependency-track DependencyTrack
615
3.0k
apache-2.0
73
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
bom nvd sca purl sbom owasp appsec ossindex security cyclonedx devsecops package-url hacktoberfest vulnerabilities bill-of-materials software-security component-analysis security-automation vulnerability-detection software-composition-analysis
Created 2013-07-16
5,987 commits to master branch, last one 6 days ago
aboutcode-org
scancode-toolkit aboutcode-org
594
2.3k
unknown
70
:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...
sca purl sbom spdx license packages copyright cyclonedx licensing provenance package-url dependencies license-scan spdx-licenses copyright-scan oss-compliance dependency-graph license-checking open-source-licensing software-composition-analysis
Created 2015-07-01
11,501 commits to develop branch, last one a day ago
package-url
purl-spec package-url
176
759
other
32
A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
url purl sbom spdx package cyclonedx package-url dependencies package-management
Created 2017-11-11
351 commits to main branch, last one 7 days ago
CycloneDX
cdxgen CycloneDX
177
668
apache-2.0
15
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission t...
bom oci sca cbom purl sbom owasp docker saasbom cyclonedx containers package-url supply-chain software-bill-of-materials
Created 2019-12-30
1,696 commits to master branch, last one 24 hours ago
aboutcode-org
vulnerablecode aboutcode-org
230
570
apache-2.0
23
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase...
cpe cve nvd osv cvss purl snyk vulndb ossindex security package-url vulnerability security-tools vulnerability-database vulnerability-scanners vulnerability-databases vulnerability-detection vulnerability-identification
Created 2017-05-19
2,638 commits to main branch, last one 7 days ago
kdeldycke
meta-package-manager kdeldycke
38
501
gpl-2.0
11
🎁 wraps all package managers with a unifying CLI
apt npm pip sbom snap spdx xbar yarn linux macos steam flatpak windows homebrew ruby-gem cyclonedx package-url php-composer mac-app-store package-manager
Created 2016-08-17
4,391 commits to main branch, last one 7 days ago
CycloneDX
cyclonedx-cli CycloneDX
63
348
apache-2.0
14
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
bom vex mbom obom purl sbom spdx owasp saasbom cyclonedx package-url hacktoberfest sbom-generator bill-of-materials software-bill-of-materials
Created 2020-10-22
416 commits to main branch, last one 4 months ago
CycloneDX
cyclonedx-maven-plugin CycloneDX
88
318
apache-2.0
14
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
bom vex mbom obom purl sbom spdx maven owasp saasbom cyclonedx package-url maven-plugin sbom-generator bill-of-materials software-bill-of-materials
Created 2017-06-04
762 commits to master branch, last one about a month ago
CycloneDX
cyclonedx-python CycloneDX
73
276
apache-2.0
11
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
bom pip purl sbom spdx conda owasp poetry python python3 cyclonedx sbom-tool environment package-url requirements hacktoberfest sbom-generator bill-of-materials software-bill-of-materials
Created 2018-11-15
712 commits to main branch, last one 18 hours ago
CycloneDX
cyclonedx-dotnet CycloneDX
97
214
apache-2.0
12
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
bom vex mbom obom purl sbom spdx owasp dotnet saasbom cyclonedx dotnet-core package-url hacktoberfest sbom-generator bill-of-materials software-bill-of-materials
Created 2018-10-02
966 commits to master branch, last one about a month ago
CycloneDX
cyclonedx-gradle-plugin CycloneDX
79
183
apache-2.0
10
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
bom purl sbom spdx owasp gradle cyclonedx package-url gradle-plugin sbom-generator bill-of-materials software-bill-of-materials
Created 2018-05-30
671 commits to master branch, last one 17 days ago
aboutcode-org
scancode.io aboutcode-org
108
130
apache-2.0
13
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...
sca purl spdx docker license scancode cyclonedx open-source package-url foss-compliance virtual-machine vulnerabilities software-composition-analysis
Created 2020-09-10
1,141 commits to main branch, last one 19 days ago
CycloneDX
cyclonedx-rust-cargo CycloneDX
49
123
apache-2.0
9
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
bom vex mbom obom purl rust sbom spdx cargo owasp saasbom cyclonedx package-url cargo-plugin sbom-generator bill-of-materials software-bill-of-materials
Created 2019-05-21
1,217 commits to main branch, last one 11 days ago
CycloneDX
sbom-utility CycloneDX
16
106
apache-2.0
6
Utility that provides an API platform for validating, querying and managing BOM data
bom vdr vex mbom obom purl sbom spdx owasp saasbom cyclonedx sbom-tool spdx-sbom package-url sbom-quality spdx-license hacktoberfest bill-of-materials software-bill-of-materials
Created 2023-01-10
291 commits to main branch, last one 4 months ago
CycloneDX
cyclonedx-core-java CycloneDX
69
93
apache-2.0
7
CycloneDX SBOM Model and Utils for Creating and Validating BOMs
bom vex mbom obom purl sbom spdx owasp library saasbom cyclonedx package-url bill-of-materials software-bill-of-materials
Created 2018-05-30
1,486 commits to master branch, last one 4 days ago
CycloneDX
cyclonedx-python-lib CycloneDX
47
79
apache-2.0
12
Python implementation of OWASP CycloneDX
bom vex cbom mbom obom purl sbom spdx owasp python library saasbom cyclonedx attestation package-url hacktoberfest software-library bill-of-materials software-bill-of-materials
Created 2021-08-27
756 commits to main branch, last one 12 days ago
package-url
packageurl-python package-url
47
74
unknown
7
Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and other generous sponsors...
purl python library package-url hacktoberfest
Created 2017-11-14
290 commits to main branch, last one 5 days ago
CycloneDX
cyclonedx-php-composer CycloneDX
7
63
apache-2.0
4
Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
bom php purl sbom spdx owasp composer cyclonedx sbom-tool package-url hacktoberfest sbom-generator composer-plugin dependency-graph bill-of-materials software-bill-of-materials
Created 2019-08-09
670 commits to master branch, last one 6 days ago
package-url
packageurl-go package-url
51
61
mit
1
Go implementation of the package url spec
go purl golang library go-library package-url golang-library
Created 2017-11-16
76 commits to master branch, last one about a month ago
aboutcode-org
purldb aboutcode-org
34
45
unknown
10
Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ and nexB for https://www.aboutcode.org/ Chat i...
purl package-url
Created 2022-10-30
1,437 commits to main branch, last one 5 days ago
CycloneDX
cyclonedx-web-tool CycloneDX
6
38
apache-2.0
3
A web based tool for working with CycloneDX BOMs
bom vex mbom obom purl sbom owasp saasbom cyclonedx package-url bill-of-materials software-bill-of-materials
Created 2021-05-21
146 commits to main branch, last one about a year ago
aboutcode-org
univers aboutcode-org
17
35
unknown
8
Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project...
osv purl version versioning package-url dependencies vulnerablecode package-manager vulnerabilities dependency-resolver
Created 2021-03-16
2,567 commits to main branch, last one 6 months ago
aboutcode-org
dejacode aboutcode-org
13
31
agpl-3.0
8
Automate open source license compliance and ensure software supply chain integrity
sca purl spdx license scancode cyclonedx open-source package-url foss-compliance vulnerabilities
Created 2023-12-07
195 commits to main branch, last one 14 days ago