aboutcode-org / container-inspectorLinks
container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relate to each other. It can also handle OCI images and Dockerfiles.
☆37Updated 2 weeks ago
Alternatives and similar repositories for container-inspector
Users that are interested in container-inspector are comparing it to the libraries listed below
Sorting:
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆72Updated 6 months ago
- QMSTR compliance tool☆32Updated 3 years ago
- SPDX Tools☆143Updated 3 months ago
- Automating Compliance Tooling Project☆22Updated 4 years ago
- sbomasm: The Complete SBOM Management Toolkit☆101Updated this week
- Examples of SPDX files for software combinations☆142Updated 2 months ago
- Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions…☆38Updated last week
- A light-weight app to audit and inventory large codebases for open source license compliance.☆72Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆110Updated 2 weeks ago
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆58Updated last week
- Enrich SBOMs with data from third party services☆214Updated last week
- ☆74Updated last month
- OpenSSF Working Group on Securing Software Repositories☆126Updated last month
- Doc, wiki and organizational content for ClearlyDefined☆106Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Updated 2 years ago
- A free and open database of all the licenses, in particular all the open source software licenses☆58Updated 2 weeks ago
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆172Updated 2 weeks ago
- AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your…☆98Updated 3 weeks ago
- Project providing insights on the metaeffekt license database.☆12Updated 2 weeks ago
- PURL to CPE Relationship mapping project.☆110Updated this week
- Machine-readable specification for the attestation of security-relevant data.☆72Updated this week
- Sbommage is an interactive terminal frontend for viewing Software Bill of Materials (SBOM) files in various formats.☆37Updated 2 months ago
- SBOM Search - Context aware search in SBOM repositories☆29Updated 2 months ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆86Updated 2 months ago
- A Python library to parse, validate and create SPDX documents.☆233Updated 3 weeks ago
- Service to scan licenses from source code☆12Updated 2 years ago
- Umbrella Repository Service for TUF☆59Updated this week
- Report on quality of SBOM contents☆25Updated last year
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆79Updated this week
- free and open source software license compatibility tool.☆50Updated 9 months ago