QMSTR / qmstrLinks
QMSTR compliance tool
☆32Updated 3 years ago
Alternatives and similar repositories for qmstr
Users that are interested in qmstr are comparing it to the libraries listed below
Sorting:
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated 7 months ago
- Automating Compliance Tooling Project☆22Updated 3 years ago
- SPDX Tools☆143Updated 2 weeks ago
- OSPO Landscape☆40Updated last month
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆42Updated 2 years ago
- Publications done by Double Open.☆16Updated 5 years ago
- A specification for signing methods and formats used by Secure Systems Lab projects.☆87Updated last month
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆104Updated this week
- Prospector permits automated collection of a wide range of metrics of open source projects useful in evaluating the project.☆66Updated 6 years ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆66Updated this week
- ☆67Updated last year
- Examples of SPDX files for software combinations☆136Updated 4 months ago
- A small application which needs a better name and collects oss-license metadata and combines it☆32Updated 2 months ago
- Example CLI project to demo API architecture and protobom library☆22Updated 2 weeks ago
- Machine-readable specification for the attestation of security-relevant data.☆63Updated last month
- Tool to check generic rules/best-practices for containers/images/dockerfiles.☆52Updated last week
- Hermeto is a CLI tool that prefetches your project dependencies to aid in making your container build process hermetic.☆23Updated last week
- Technical Advisory Council☆131Updated last week
- ☆37Updated 9 months ago
- Project providing insights on the metaeffekt license database.☆12Updated 3 weeks ago
- Doc, wiki and organizational content for ClearlyDefined☆103Updated this week
- A tool that takes two or more micro SBOMs and composes them into one distributable SBOM☆23Updated 2 years ago
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆89Updated 4 months ago
- sbomasm: The Complete SBOM Management Toolkit☆89Updated last week
- OpenSSF Working Group on Securing Software Repositories☆122Updated this week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆33Updated 6 months ago
- ☆102Updated last year
- A java api and command line tool for scanning, reporting and fixing a git repository's InnerSource Readiness based on a supplied specific…☆20Updated 2 years ago
- Umbrella Repository Service for TUF☆57Updated last week
- Open Source Policy Examples and Templates☆189Updated 2 years ago