aboutcode-org / dejacode
Automate open source license compliance and ensure software supply chain integrity
☆25Updated this week
Related projects ⓘ
Alternatives and complementary repositories for dejacode
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆32Updated last month
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆22Updated last month
- OSS License Open Data☆12Updated 5 years ago
- A desktop workbench for OSS Review Toolkit result files.☆25Updated this week
- OSADL license compatibility matrix as a CSV☆15Updated 2 weeks ago
- Curations and configuration files for the OSS Review Toolkit.☆16Updated this week
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆34Updated 3 months ago
- Find & pull public SBOMs☆16Updated 2 months ago
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆35Updated this week
- Publications done by Double Open.☆16Updated 4 years ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆25Updated last month
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆71Updated 3 weeks ago
- Automating Compliance Tooling Project☆20Updated 2 years ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆29Updated 10 months ago
- The model for the information captured in SPDX version 3 standard.☆71Updated this week
- Service to scan licenses from source code☆12Updated last year
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆58Updated 3 weeks ago
- A collection of scripts for license compliance scanning, mostly experimental☆22Updated 4 months ago
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆83Updated 3 months ago
- The International FOSS Law Book, v.2 and onwards☆13Updated 2 years ago
- A web based tool for working with CycloneDX BOMs☆30Updated 3 months ago
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆57Updated 3 weeks ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆19Updated last year
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆47Updated this week
- ☆21Updated last week
- This repo is for tracking activities that we work on during TODO Group Work Days☆15Updated 2 years ago
- SBOM Grep - search through SBOMs☆21Updated last month
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆119Updated last week
- GitHub Action to get a license overview in SPDX format☆14Updated 2 years ago
- OpenSSF Endusers Working Group☆28Updated 8 months ago