aboutcode-org / aboutcode-toolkit
AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your project: it includes utilities to generate inventory/BOM or Attribution documentation.
☆94Updated 4 months ago
Alternatives and similar repositories for aboutcode-toolkit:
Users that are interested in aboutcode-toolkit are comparing it to the libraries listed below
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆62Updated 2 weeks ago
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆35Updated 5 months ago
- Doc, wiki and organizational content for ClearlyDefined☆90Updated 2 weeks ago
- Automate open source license compliance and ensure software supply chain integrity☆27Updated this week
- ScanCode Workbench is a desktop app to review and conclude license and origin from code scans generated by ScanCode Toolkit.☆162Updated 2 weeks ago
- SPDX Tools☆132Updated last year
- SPDX 2.0 document creation and storage☆16Updated 2 years ago
- A Python library to parse, validate and create SPDX documents.☆199Updated 4 months ago
- Source for the website providing online SPDX tools☆62Updated last week
- Publications done by Double Open.☆16Updated 4 years ago
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆125Updated this week
- a license identification tool for Source Code☆110Updated 2 years ago
- The International FOSS Law Book, v.2 and onwards☆13Updated 3 years ago
- FOSSmarks - A practical guide to understanding trademarks in the context of Free and Open Source Software projects.☆25Updated 11 months ago
- A collection of scripts for license compliance scanning, mostly experimental☆22Updated this week
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆72Updated 3 months ago
- A service that crawls projects and packages for information relevant to ClearlyDefined☆51Updated this week
- OpenSSF Endusers Working Group☆28Updated 10 months ago
- OSS License Open Data☆12Updated 5 years ago
- ☆34Updated 3 weeks ago
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆32Updated 3 months ago
- Prospector permits automated collection of a wide range of metrics of open source projects useful in evaluating the project.☆66Updated 5 years ago
- A free and open database of all the licenses, in particular all the open source software licenses☆38Updated last week
- material designed to help organizations meet the training and process requirements of the OpenChain Specification☆30Updated 2 years ago
- A curated set of issues related to GitHub and running corporate scale open source☆26Updated 4 years ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆60Updated this week
- CHAOSS Value Working Group☆39Updated 2 months ago
- Curations and configuration files for the OSS Review Toolkit.☆17Updated this week
- This repo is for tracking activities that we work on during TODO Group Work Days☆15Updated 2 years ago
- Panels from GrimoireLab dashboards☆35Updated 2 weeks ago