Software Component Verification Standard (SCVS)
☆157Apr 1, 2025Updated 11 months ago
Alternatives and similar repositories for Software-Component-Verification-Standard
Users that are interested in Software-Component-Verification-Standard are comparing it to the libraries listed below
Sorting:
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆487Updated this week
- This is the OpenChain Telco Work Group☆19Mar 13, 2026Updated last week
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆271Updated this week
- A documentation and tracking project with the goal of making package management systems more secure.☆51Mar 5, 2021Updated 5 years ago
- InfoSec OpenAI Examples☆19Nov 26, 2023Updated 2 years ago
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆214Feb 4, 2026Updated last month
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆111Feb 28, 2026Updated 2 weeks ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆103Mar 13, 2026Updated last week
- A taxonomy of all official CycloneDX property namespaces and names☆21Mar 2, 2026Updated 2 weeks ago
- Measure release insights and recommendations for open-source dependencies. Note: this project is archived.☆10Jan 3, 2023Updated 3 years ago
- AIBOM Workshop RSA 2024☆15May 20, 2024Updated last year
- OWASP Foundation Web Repository☆19Feb 19, 2026Updated last month
- Generate a score for your sbom to understand if it will actually be useful.☆239Aug 13, 2024Updated last year
- Utility that provides an API platform for validating, querying and managing BOM data☆128Jan 2, 2026Updated 2 months ago
- Sunshine - SBOM visualization tool☆106Feb 26, 2026Updated 3 weeks ago
- ☆23Oct 26, 2021Updated 4 years ago
- Low-effort reachability analysis for third-party code vulnerabilities.☆22Jul 11, 2023Updated 2 years ago
- Service to scan licenses from source code☆12Aug 14, 2023Updated 2 years ago
- A library for parsing security advisories☆13Feb 5, 2026Updated last month
- SBOM Move - Automate build and transfer of SBOMs across systems☆25Updated this week
- Functionality and DataModels of OWASP CycloneDX for PHP☆13Updated this week
- SBOM Search - Context aware search in SBOM repositories☆29Nov 24, 2025Updated 3 months ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆106Mar 12, 2026Updated last week
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆82Mar 13, 2026Updated last week
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,666Updated this week
- Application Security Verification Standard☆3,367Mar 2, 2026Updated 2 weeks ago
- Externalize Java application access to protected resources as log messages.☆43Mar 7, 2026Updated last week
- SBOM Explorer - Discover and pull public SBOMs☆20May 23, 2025Updated 9 months ago
- Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis☆52Feb 21, 2026Updated 3 weeks ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.☆25Updated this week
- Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…☆214Updated this week
- ☆76Dec 10, 2025Updated 3 months ago
- Frontend UI for Dependency-Track☆152Mar 12, 2026Updated last week
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆992Mar 11, 2026Updated last week
- DefectDojo Community Content☆19Nov 9, 2025Updated 4 months ago
- Repository for on-going work as part of the SBOM for AI Tiger Team effort.☆42Jul 28, 2025Updated 7 months ago
- GitHub action to generate a CycloneDX SBOM for .NET☆12Jul 15, 2025Updated 8 months ago
- OSADL license compatibility matrix as a CSV☆18Dec 10, 2024Updated last year
- OWASP Ontology-driven Threat Modelling framework☆40Jul 11, 2023Updated 2 years ago