QMSTR / qmstrLinks
QMSTR compliance tool
☆32Updated 3 years ago
Alternatives and similar repositories for qmstr
Users that are interested in qmstr are comparing it to the libraries listed below
Sorting:
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated 3 months ago
- SPDX Tools☆137Updated 2 years ago
- OSPO Landscape☆38Updated last month
- Automating Compliance Tooling Project☆21Updated 3 years ago
- A java api and command line tool for scanning, reporting and fixing a git repository's InnerSource Readiness based on a supplied specific…☆20Updated last year
- SBOM Edit - Conditional edits and merging of SBOMs☆69Updated 2 weeks ago
- This repo is for tracking activities that we work on during TODO Group Work Days☆15Updated 2 years ago
- Doc, wiki and organizational content for ClearlyDefined☆97Updated last month
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆88Updated 2 weeks ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆93Updated last week
- SPDX SBOM Landscape☆15Updated last year
- Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts☆16Updated this week
- ☆35Updated 5 months ago
- Publications done by Double Open.☆16Updated 5 years ago
- OSS License Open Data☆12Updated 5 years ago
- SPDX 2.0 document creation and storage☆16Updated 2 years ago
- opengovernance.dev☆41Updated 5 years ago
- ☆62Updated 11 months ago
- material designed to help organizations meet the training and process requirements of the OpenChain Specification☆30Updated 2 years ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆67Updated 2 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆30Updated last year
- CLOMonitor is a tool that periodically checks open source projects repositories to verify they meet certain project health best practices☆131Updated this week
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆42Updated 2 years ago
- This repository stores meetings minutes for the SPDX project☆31Updated last week
- Check SPDX SBOM for NTIA minimum elements☆64Updated this week
- A small application which needs a better name and collects oss-license metadata and combines it☆32Updated last month
- Example CLI project to demo API architecture and protobom library☆21Updated 3 weeks ago
- ☆21Updated 7 months ago
- The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…☆15Updated 2 months ago
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆31Updated last month