aboutcode-org / aboutcode-toolkit
AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your project: it includes utilities to generate inventory/BOM or Attribution documentation.
☆96Updated 3 weeks ago
Alternatives and similar repositories for aboutcode-toolkit:
Users that are interested in aboutcode-toolkit are comparing it to the libraries listed below
- ScanCode Workbench is a desktop app to review and conclude license and origin from code scans generated by ScanCode Toolkit.☆165Updated 3 months ago
- Automate open source license compliance and ensure software supply chain integrity☆31Updated this week
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated last month
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆74Updated 2 weeks ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆65Updated 3 weeks ago
- SPDX Tools☆136Updated last year
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆130Updated this week
- Doc, wiki and organizational content for ClearlyDefined☆94Updated 2 weeks ago
- A collection of scripts for license compliance scanning, mostly experimental☆22Updated last week
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆45Updated last week
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆22Updated 2 weeks ago
- Source for the website providing online SPDX tools☆67Updated 3 weeks ago
- SPDX 2.0 document creation and storage☆16Updated 2 years ago
- ☆35Updated 3 months ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆65Updated this week
- Publications done by Double Open.☆16Updated 4 years ago
- Atarashi scans for license statements in open source software, focusing on text statistics. Designed to work stand-alone and with FOSSolo…☆29Updated 2 years ago
- Open Source Casebook☆74Updated 4 years ago
- The OSS Attribution Builder is a website that helps teams create attribution documents (notices, "open source screens", credits, etc) com…☆81Updated 4 years ago
- OSPO Landscape☆36Updated this week
- The International FOSS Law Book, v.2 and onwards☆13Updated 3 years ago
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆35Updated 6 months ago
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- Prospector permits automated collection of a wide range of metrics of open source projects useful in evaluating the project.☆66Updated 6 years ago
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆86Updated last week
- A Python library to parse, validate and create SPDX documents.☆208Updated last week
- Curations and configuration files for the OSS Review Toolkit.☆18Updated last week
- material designed to help organizations meet the training and process requirements of the OpenChain Specification☆30Updated 2 years ago
- Panels from GrimoireLab dashboards☆35Updated 3 months ago
- JavaScript implementation of the package url spec☆28Updated last month