aboutcode-org / container-inspectorLinks
container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relate to each other. It can also handle OCI images and Dockerfiles.
☆38Updated 4 months ago
Alternatives and similar repositories for container-inspector
Users that are interested in container-inspector are comparing it to the libraries listed below
Sorting:
- Automating Compliance Tooling Project☆21Updated 3 years ago
- QMSTR compliance tool☆32Updated 3 years ago
- Machine-readable specification for the attestation of security-relevant data.☆60Updated 2 weeks ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆69Updated 2 weeks ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆97Updated 2 weeks ago
- SBOM Edit - Conditional edits and merging of SBOMs☆74Updated last week
- GitHub Action to get a license overview in SPDX format☆14Updated 3 years ago
- Service to scan licenses from source code☆12Updated last year
- ☆63Updated last year
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆146Updated this week
- OSPO Landscape☆38Updated 3 months ago
- Examples of SPDX files for software combinations☆133Updated last month
- Sbommage is an interactive terminal frontend for viewing Software Bill of Materials (SBOM) files in various formats.☆30Updated 6 months ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆66Updated this week
- Report on quality of SBOM contents☆19Updated 7 months ago
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆24Updated 2 weeks ago
- Automate open source license compliance and ensure software supply chain integrity☆34Updated this week
- SBOM Search - Context aware search in SBOM repositories☆28Updated last week
- Prospector permits automated collection of a wide range of metrics of open source projects useful in evaluating the project.☆66Updated 6 years ago
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆51Updated last week
- AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your…☆98Updated last month
- SPDX Tools☆139Updated 2 years ago
- Documentation and guidance for handling outbound open source for organizations☆21Updated 2 years ago
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆88Updated 2 months ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆33Updated last month
- A small application which needs a better name and collects oss-license metadata and combines it☆32Updated 3 months ago
- PURL to CPE Relationship mapping project.☆91Updated this week
- SPDX Merge tool☆46Updated 3 months ago
- This repository contains the reference material related to the OpenChain Project☆97Updated 2 weeks ago
- Project providing insights on the metaeffekt license database.☆12Updated last week