aboutcode-org / container-inspector
container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relate to each other. It can also handle OCI images and Dockerfiles.
☆34Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for container-inspector
- QMSTR compliance tool☆31Updated 2 years ago
- Automating Compliance Tooling Project☆20Updated 2 years ago
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆22Updated last month
- A tool that takes two or more micro SBOMs and composes them into one distributable SBOM☆23Updated last year
- OSPO Landscape☆33Updated last week
- Automate open source license compliance and ensure software supply chain integrity☆25Updated this week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆58Updated 3 weeks ago
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆83Updated 3 months ago
- bomsh is collection of tools to explore the OmniBOR idea☆21Updated 3 weeks ago
- GitHub Action to get a license overview in SPDX format☆14Updated 2 years ago
- Publications done by Double Open.☆16Updated 4 years ago
- ☆61Updated 4 months ago
- Doc, wiki and organizational content for ClearlyDefined☆86Updated 3 weeks ago
- OSADL license compatibility matrix as a CSV☆15Updated 2 weeks ago
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆41Updated last year
- Curations and configuration files for the OSS Review Toolkit.☆16Updated this week
- AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your…☆94Updated 2 months ago
- OPENSSF SECURITY INSIGHTS: Repository for development of the draft standard, where requests for modification should be made via Github Is…☆50Updated 2 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆29Updated 10 months ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆25Updated last month
- Kidash: A GrimoireLab tool & library to manage Kibana/Kibiter visualizations and dashboards☆12Updated last week
- A CLI tool for creating secure by design/default source repos.☆24Updated 3 months ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆72Updated last month
- SPDX Tools☆131Updated last year
- SPDX Merge tool☆39Updated 2 months ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆60Updated this week
- Prospector permits automated collection of a wide range of metrics of open source projects useful in evaluating the project.☆66Updated 5 years ago
- Risk Working Group Repository☆26Updated last week
- The model for the information captured in SPDX version 3 standard.☆71Updated this week
- opengovernance.dev☆37Updated 5 years ago