41 results found Sort:
- Filter by Primary Language:
- Go (11)
- Python (9)
- Rust (4)
- Java (4)
- C# (3)
- HTML (3)
- PHP (2)
- XSLT (1)
- JavaScript (1)
- Kotlin (1)
- TypeScript (1)
- +
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Created
2020-05-07
2,194 commits to main branch, last one 20 hours ago
:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...
Created
2015-07-01
11,146 commits to develop branch, last one 20 hours ago
A suite of tools to automate software compliance checks.
Created
2017-10-19
15,687 commits to main branch, last one 21 hours ago
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the ...
Created
2021-12-30
949 commits to master branch, last one 15 days ago
Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-...
Created
2017-11-27
1,102 commits to main branch, last one 6 months ago
FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and we...
Created
2014-01-13
9,740 commits to master branch, last one a day ago
A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
Created
2017-11-11
204 commits to master branch, last one 2 months ago
📜 Cargo plugin to generate list of all licenses for a crate 🦀
Created
2019-11-01
184 commits to main branch, last one 26 days ago
Various data formats for the SPDX License List including RDFa, HTML, Text, and JSON
Created
2016-04-15
644 commits to main branch, last one about a month ago
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
Created
2022-07-08
80 commits to main branch, last one 3 months ago
reuse is a tool for compliance with the REUSE recommendations.
Created
2019-04-12
2,258 commits to main branch, last one 7 days ago
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and V...
Created
2017-05-29
983 commits to master branch, last one 19 hours ago
Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.
Created
2023-03-06
662 commits to main branch, last one 14 hours ago
A utility to generate SPDX-compliant Bill of Materials manifests
Created
2021-11-19
1,057 commits to main branch, last one about a month ago
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Created
2017-06-04
718 commits to master branch, last one 6 days ago
The SPDX specification in MarkDown and HTML formats.
Created
2017-05-10
668 commits to development/v3.0.1 branch, last one 15 days ago
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Created
2020-10-22
403 commits to main branch, last one about a month ago
Reliable project licenses detector.
Created
2018-01-30
169 commits to master branch, last one 4 years ago
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
Created
2018-11-15
625 commits to main branch, last one 5 days ago
write licenses to stdout
Created
2019-09-19
98 commits to master branch, last one about a year ago
A Python library to parse, validate and create SPDX documents.
Created
2015-03-23
1,379 commits to main branch, last one 2 months ago
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Created
2018-10-02
937 commits to master branch, last one 20 days ago
SBOM quality score - Quality metrics for your sboms
Created
2023-01-31
375 commits to main branch, last one a day ago
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
Created
2018-05-30
451 commits to master branch, last one 2 months ago
SPDX Tools
Created
2015-03-23
1,015 commits to master branch, last one about a year ago
licensechecker (lc) a command line application which scans directories and identifies what software license things are under producing reports as either SPDX, CSV, JSON, XLSX or CLI Tabular output. Du...
Created
2018-01-22
395 commits to master branch, last one 8 days ago
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...
Created
2020-09-10
976 commits to main branch, last one 19 hours ago
List of SPDX licenses
Created
2014-08-05
63 commits to main branch, last one 4 months ago
:boom: Full-fledged CLI tool to generate and package node modules compliant with Browser and NodeJS. Packer CLI support all modern style, unit test and script transpiler tools
Created
2018-09-18
531 commits to master branch, last one 4 years ago
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
Created
2019-05-21
1,129 commits to main branch, last one a day ago