HaRo87 / mdbom

Related projects ⓘ

Alternatives and complementary repositories for mdbom

• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆15Updated this week
• anthonyharrison / sbom2doc
  Transform SBOM contents into a formatted document including markdown and PDF formats
  ☆17Updated 2 months ago
• CycloneDX / cyclonedx-web-tool
  A web based tool for working with CycloneDX BOMs
  ☆30Updated 3 months ago
• advanced-security / sbom-generator-action
  ☆15Updated 9 months ago
• ossf / ossf-landscape
  ☆26Updated this week
• jetstack / dependency-track-exporter
  ☆23Updated 3 months ago
• IBM / gauge
  Measure release insights and recommendations for open-source dependencies. Note: this project is archived.
  ☆11Updated last year
• spdx / spdx-to-osv
  Produce an Open Source Vulnerability JSON file based on information in an SPDX document
  ☆60Updated 5 months ago
• actions / attest-sbom
  Action for generating SBOM attestations for workflow artifacts
  ☆19Updated this week
• anchore / grype-db
  ☆37Updated this week
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated last month
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated 10 months ago
• old-xebis / repository-template
  Highly automated, up-to-date, and well-documented repository template. Checks for common problems, Markdown, YAML, Bash, formats, lints, …
  ☆12Updated 10 months ago
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆167Updated 2 months ago
• oss-review-toolkit / ort-ci-gitlab
  Use ORT in your GitLab pipelines
  ☆13Updated 4 months ago
• docker / buildkit-syft-scanner
  BuildKit Syft scanner
  ☆26Updated 2 months ago
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆42Updated 5 months ago
• usnistgov / swid-tools
  ☆13Updated last month
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆74Updated 8 months ago
• anchore / chronicle
  a fast changelog generator sourced from PRs and Issues
  ☆52Updated last week
• oss-review-toolkit / ort-workbench
  A desktop workbench for OSS Review Toolkit result files.
  ☆25Updated this week
• ossf / security-insights-spec
  OPENSSF SECURITY INSIGHTS: Repository for development of the draft standard, where requests for modification should be made via Github Is…
  ☆50Updated 2 months ago
• fossas / fossa-action
  Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
  ☆46Updated last month
• advanced-security / enterprise-security-team
  Manage a uniform team of security managers for every organization in your enterprise
  ☆17Updated 3 months ago
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated last year
• cloud-gov / caulking
  Prevent leaks with gitleaks, and use tests to validate
  ☆32Updated 2 months ago
• secvisogram / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆33Updated last week
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated last week
• jfrog / jfrog-npm-tools
  ☆54Updated last year