aboutcode-org / container-inspector
container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relate to each other. It can also handle OCI images and Dockerfiles.
☆37Updated 3 weeks ago
Alternatives and similar repositories for container-inspector:
Users that are interested in container-inspector are comparing it to the libraries listed below
- Automate open source license compliance and ensure software supply chain integrity☆30Updated this week
- AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your…☆96Updated this week
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆67Updated this week
- QMSTR compliance tool☆32Updated 2 years ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆28Updated last year
- Automating Compliance Tooling Project☆21Updated 3 years ago
- GitHub Action to get a license overview in SPDX format☆14Updated 3 years ago
- Find & pull public SBOMs☆17Updated 7 months ago
- Machine-readable specification for the attestation of security-relevant data.☆57Updated this week
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆44Updated this week
- OSPO Landscape☆34Updated 3 weeks ago
- SBOM Grep - search through SBOMs☆22Updated last month
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆86Updated last week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆64Updated last month
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆21Updated this week
- Report on quality of SBOM contents☆17Updated 3 months ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆30Updated 2 weeks ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆61Updated this week
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆31Updated 5 months ago
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆50Updated this week
- Publications done by Double Open.☆16Updated 4 years ago
- Doc, wiki and organizational content for ClearlyDefined☆94Updated 3 weeks ago
- Sbommage is an interactive terminal frontend for viewing Software Bill of Materials (SBOM) files in various formats.☆26Updated last month
- SPDX Command Line Tools using the Spdx-Java-Library☆67Updated last month
- The model for the information captured in SPDX version 3 standard.☆79Updated last week
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆84Updated this week
- ☆61Updated 8 months ago
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆131Updated this week
- Everything you ever wanted to know about the CRA and its implementation☆62Updated this week
- bomsh is collection of tools to explore the OmniBOR idea☆21Updated 5 months ago