aboutcode-org / container-inspectorLinks
container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relate to each other. It can also handle OCI images and Dockerfiles.
☆37Updated 6 months ago
Alternatives and similar repositories for container-inspector
Users that are interested in container-inspector are comparing it to the libraries listed below
Sorting:
- QMSTR compliance tool☆32Updated 3 years ago
- Automating Compliance Tooling Project☆22Updated 3 years ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆104Updated 3 weeks ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆69Updated 2 months ago
- Machine-readable specification for the attestation of security-relevant data.☆63Updated 3 weeks ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆66Updated this week
- sbomasm: The Complete SBOM Management Toolkit☆86Updated last week
- GitHub Action to get a license overview in SPDX format☆14Updated 3 years ago
- SPDX Tools☆143Updated this week
- Sbommage is an interactive terminal frontend for viewing Software Bill of Materials (SBOM) files in various formats.☆33Updated last month
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆37Updated 3 weeks ago
- PURL to CPE Relationship mapping project.☆95Updated last week
- Enrich SBOMs with data from third party services☆196Updated last month
- Examples of SPDX files for software combinations☆136Updated 3 months ago
- ☆66Updated last year
- Service to scan licenses from source code☆12Updated 2 years ago
- Project providing insights on the metaeffekt license database.☆12Updated last week
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆52Updated this week
- Automate open source license compliance and ensure software supply chain integrity☆34Updated 3 weeks ago
- SBOM Search - Context aware search in SBOM repositories☆29Updated this week
- Umbrella Repository Service for TUF☆56Updated last week
- Prospector permits automated collection of a wide range of metrics of open source projects useful in evaluating the project.☆66Updated 6 years ago
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆149Updated this week
- Documentation and guidance for handling outbound open source for organizations☆21Updated 2 years ago
- OpenVEX Specification☆159Updated 4 months ago
- OSPO Landscape☆40Updated last month
- A Python library to parse, validate and create SPDX documents.☆227Updated 3 months ago
- A license scanner for container images and filesystems.☆109Updated last week
- Format agnostic SBOM tooling☆116Updated this week
- SBOM Explorer - Discover and pull public SBOMs☆20Updated 4 months ago