Alternatives and similar repositories for meta-wr-sbom

Users that are interested in meta-wr-sbom are comparing it to the libraries listed below

• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆65Updated last year
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆139Updated 3 weeks ago
• nyph-infosec / daggerboard
  ☆102Updated last year
• CycloneDX / cyclonedx-buildroot
  Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects
  ☆14Updated this week
• osadl / foss-policy-template
  Plain text version of the OSADL Open Source Policy Template: The Basis for License Compliance
  ☆20Updated 3 years ago
• CycloneDX / cyclonedx-linux-generator
  Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions
  ☆51Updated last week
• interlynk-io / sbomex
  SBOM Explorer - Discover and pull public SBOMs
  ☆20Updated 6 months ago
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆34Updated last year
• spdx / spdx-to-osv
  Produce an Open Source Vulnerability JSON file based on information in an SPDX document
  ☆65Updated last year
• spdx / ntia-conformance-checker
  Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.
  ☆75Updated last week
• TimesysGit / meta-timesys
  Vulnerability management tool that provides Yocto SBOM generation and CVE Analysis of target images.
  ☆39Updated last week
• bgnetworks / meta-dependencytrack
  A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.
  ☆21Updated last year
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆102Updated this week
• Open-Source-Compliance / package-analysis
  This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …
  ☆52Updated last week
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆95Updated this week
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆123Updated 2 months ago
• scanoss / scanoss.py
  The SCANOSS python package providing a simple, easy to consume library for interacting with SCANOSS APIs/Engine.
  ☆36Updated last week
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆53Updated 5 months ago
• ossf / OpenVEX
  Vuln Disclosure WG's new SIG
  ☆11Updated last year
• priv-kweihmann / meta-sca
  Layer for static code analysis and security hardening
  ☆104Updated last week
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆210Updated last month
• nsacyber / HIRS
  Trusted Computing based services supporting TPM provisioning and supply chain validation concepts. #nsacyber
  ☆203Updated this week
• interlynk-io / sbomqs
  sbomqs: The Comprehensive SBOM Quality & Compliance Tool
  ☆255Updated this week
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆198Updated this week
• eclipse-sw360 / sw360
  SW360 project
  ☆195Updated last week
• PeterHuewe / linux-tpmdd
  TPM subsystem updates for Linux kernel source tree
  ☆22Updated 7 years ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆48Updated 2 years ago
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆229Updated this week
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆95Updated last month
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆29Updated 2 years ago