21 results found Sort:

DependencyTrack
dependency-track DependencyTrack
583
2.7k
apache-2.0
69
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
bom nvd sca purl sbom owasp appsec ossindex security cyclonedx devsecops package-url hacktoberfest vulnerabilities bill-of-materials software-security component-analysis security-automation vulnerability-detection software-composition-analysis
Created 2013-07-16
5,682 commits to master branch, last one 2 days ago
aboutcode-org
scancode-toolkit aboutcode-org
560
2.2k
unknown
71
:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...
sca purl sbom spdx license packages copyright cyclonedx licensing provenance package-url dependencies license-scan spdx-licenses copyright-scan oss-compliance dependency-graph license-checking open-source-licensing software-composition-analysis
Created 2015-07-01
11,326 commits to develop branch, last one 16 days ago
package-url
purl-spec package-url
166
711
other
32
A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
url purl sbom spdx package cyclonedx package-url dependencies package-management
Created 2017-11-11
270 commits to master branch, last one 29 days ago
CycloneDX
cdxgen CycloneDX
163
596
apache-2.0
16
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission t...
bom oci sca cbom purl sbom owasp docker saasbom cyclonedx containers package-url supply-chain software-bill-of-materials
Created 2019-12-30
1,436 commits to master branch, last one 4 days ago
aboutcode-org
vulnerablecode aboutcode-org
201
548
apache-2.0
22
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase...
cpe cve nvd osv cvss purl snyk vulndb ossindex security package-url vulnerability security-tools vulnerability-database vulnerability-scanners vulnerability-databases vulnerability-detection vulnerability-identification
Created 2017-05-19
2,549 commits to main branch, last one 3 days ago
kdeldycke
meta-package-manager kdeldycke
33
477
gpl-2.0
13
🎁 wraps all package managers with a unifying CLI
apt npm pip sbom snap spdx xbar yarn linux macos steam flatpak windows homebrew ruby-gem cyclonedx package-url php-composer mac-app-store package-manager
Created 2016-08-17
4,333 commits to main branch, last one 15 days ago
CycloneDX
cyclonedx-cli CycloneDX
64
320
apache-2.0
15
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
bom vex mbom obom purl sbom spdx owasp saasbom cyclonedx package-url hacktoberfest sbom-generator bill-of-materials software-bill-of-materials
Created 2020-10-22
416 commits to main branch, last one 28 days ago
CycloneDX
cyclonedx-maven-plugin CycloneDX
86
302
apache-2.0
13
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
bom vex mbom obom purl sbom spdx maven owasp saasbom cyclonedx package-url maven-plugin sbom-generator bill-of-materials software-bill-of-materials
Created 2017-06-04
759 commits to master branch, last one 23 days ago
CycloneDX
cyclonedx-python CycloneDX
69
259
apache-2.0
13
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
bom pip purl sbom spdx conda owasp poetry python python3 cyclonedx sbom-tool environment package-url requirements hacktoberfest sbom-generator bill-of-materials software-bill-of-materials
Created 2018-11-15
678 commits to main branch, last one 7 days ago
CycloneDX
cyclonedx-dotnet CycloneDX
90
193
apache-2.0
13
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
bom vex mbom obom purl sbom spdx owasp dotnet saasbom cyclonedx dotnet-core package-url hacktoberfest sbom-generator bill-of-materials software-bill-of-materials
Created 2018-10-02
947 commits to master branch, last one 14 days ago
CycloneDX
cyclonedx-gradle-plugin CycloneDX
78
164
apache-2.0
11
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
bom purl sbom spdx owasp gradle cyclonedx package-url gradle-plugin sbom-generator bill-of-materials software-bill-of-materials
Created 2018-05-30
642 commits to master branch, last one 2 days ago
aboutcode-org
scancode.io aboutcode-org
91
121
apache-2.0
14
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...
sca purl spdx docker license scancode cyclonedx open-source package-url foss-compliance virtual-machine vulnerabilities software-composition-analysis
Created 2020-09-10
1,063 commits to main branch, last one 3 days ago
CycloneDX
cyclonedx-rust-cargo CycloneDX
45
111
apache-2.0
10
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
bom vex mbom obom purl rust sbom spdx cargo owasp saasbom cyclonedx package-url cargo-plugin sbom-generator bill-of-materials software-bill-of-materials
Created 2019-05-21
1,205 commits to main branch, last one 8 days ago
CycloneDX
sbom-utility CycloneDX
14
98
apache-2.0
6
Utility that provides an API platform for validating, querying and managing BOM data
bom vdr vex mbom obom purl sbom spdx owasp saasbom cyclonedx sbom-tool spdx-sbom package-url sbom-quality spdx-license hacktoberfest bill-of-materials software-bill-of-materials
Created 2023-01-10
291 commits to main branch, last one about a month ago
CycloneDX
cyclonedx-core-java CycloneDX
64
83
apache-2.0
8
CycloneDX SBOM Model and Utils for Creating and Validating BOMs
bom vex mbom obom purl sbom spdx owasp library saasbom cyclonedx package-url bill-of-materials software-bill-of-materials
Created 2018-05-30
1,404 commits to master branch, last one 11 hours ago
package-url
packageurl-python package-url
46
72
unknown
8
Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and other generous sponsors...
purl python library package-url hacktoberfest
Created 2017-11-14
286 commits to main branch, last one about a month ago
CycloneDX
cyclonedx-python-lib CycloneDX
43
71
apache-2.0
14
Python implementation of OWASP CycloneDX
bom vex cbom mbom obom purl sbom spdx owasp python library saasbom cyclonedx attestation package-url hacktoberfest software-library bill-of-materials software-bill-of-materials
Created 2021-08-27
722 commits to main branch, last one 6 days ago
package-url
packageurl-go package-url
48
55
mit
3
Go implementation of the package url spec
go purl golang library go-library package-url golang-library
Created 2017-11-16
73 commits to master branch, last one 6 days ago
CycloneDX
cyclonedx-php-composer CycloneDX
7
54
apache-2.0
5
Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
bom php purl sbom spdx owasp composer cyclonedx sbom-tool package-url hacktoberfest sbom-generator composer-plugin dependency-graph bill-of-materials software-bill-of-materials
Created 2019-08-09
632 commits to master branch, last one 13 days ago
aboutcode-org
purldb aboutcode-org
23
36
unknown
9
Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ and nexB for https://www.aboutcode.org/ Chat i...
purl package-url
Created 2022-10-30
1,357 commits to main branch, last one a day ago
aboutcode-org
dejacode aboutcode-org
8
26
agpl-3.0
8
Automate open source license compliance and ensure software supply chain integrity
sca purl spdx license scancode cyclonedx open-source package-url foss-compliance vulnerabilities
Created 2023-12-07
166 commits to main branch, last one a day ago