Alternatives and similar repositories for advisory-parser

Users that are interested in advisory-parser are comparing it to the libraries listed below

• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated 2 years ago
• csaf-tools / CVRF-CSAF-Converter
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Updated 6 months ago
• illikainen / ossaudit
  Audit python packages for known vulnerabilities
  ☆33Updated 3 years ago
• kissbom / kissbom-spec
  The Keep It Simple Software Bill of Material
  ☆11Updated 3 years ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆21Updated 2 years ago
• fabric8-analytics / cvejob
  A tool which tries to map CVEs from NVD to packages in supported ecosystems (Maven, NPM, PyPI).
  ☆12Updated 4 months ago
• eslerm / nvd-api-client
  NVD API 2.0 client for CVE information
  ☆13Updated 6 months ago
• sbomtools / apt2sbom
  apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information
  ☆25Updated 3 years ago
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• mjvm / pyrpm
  A pure python rpm reader
  ☆20Updated last year
• sbs2001 / purl2cpe
  This is a mapping of CPEs to package urls created by using VulnerableCode's data
  ☆10Updated 5 years ago
• cve-search / CveXplore
  CveXplore
  ☆42Updated 2 months ago
• supplyshield / supplyshield
  SupplyShield is an open-source application security orchestration framework designed to secure your software supply chain from vulnerabil…
  ☆15Updated 2 weeks ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• quic / lid
  License Identifier
  ☆14Updated 4 years ago
• IQTLabs / software-supply-chain-compromises
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆130Updated 3 years ago
• armijnhemel / compliance-scripts
  A collection of scripts for license compliance scanning, mostly experimental
  ☆21Updated 5 months ago
• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆38Updated 2 years ago
• aboutcode-org / python-inspector
  Inspect Python code and PyPI package manifests. Resolve Python dependencies.
  ☆24Updated last month
• NorthernSec / WebImport
  Import python libraries over HTTP
  ☆13Updated last year
• jayvdb / pypidb
  PyPI client side database with SCM/VCS URLs
  ☆13Updated last year
• Hitachi / open-license
  OSS License Open Data
  ☆12Updated 6 years ago
• pudo / banal
  Commons of stupid, simple Python micro functions. Pull requests very welcome.
  ☆19Updated 8 months ago
• mprpic / cvelint
  CLI tool to validate CVE v5 JSON records.
  ☆11Updated 6 months ago
• org-metaeffekt / metaeffekt-universe
  Project providing insights on the metaeffekt license database.
  ☆12Updated last week
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆70Updated 2 months ago
• jordan-wright / ossmalware
  ☆93Updated 3 years ago
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆24Updated 10 months ago
• ExodusIntelligence / cpe_utils
  A simple python library to assist in working with cpes
  ☆19Updated last year
• siemens / continuous-clearing
  The Continuous Clearing Tool scans and collects third-party open-source components used in projects based on NPM, NuGet, Debian, Maven, P…
  ☆29Updated last week