aboutcode-org / license-expression
Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX or any other license id scheme.
☆64Updated last month
Alternatives and similar repositories for license-expression:
Users that are interested in license-expression are comparing it to the libraries listed below
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆74Updated 5 months ago
- A Python library to parse, validate and create SPDX documents.☆206Updated 6 months ago
- SPDX Tools☆135Updated last year
- Python implementation of OWASP CycloneDX☆79Updated this week
- Source for the website providing online SPDX tools☆66Updated 2 weeks ago
- A free and open database of all the licenses, in particular all the open source software licenses☆43Updated last week
- OSADL license compatibility matrix as a CSV☆15Updated 3 months ago
- Automate open source license compliance and ensure software supply chain integrity☆30Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆28Updated last year
- This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …☆45Updated this week
- The model for the information captured in SPDX version 3 standard.☆79Updated last week
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆34Updated 5 months ago
- Doc, wiki and organizational content for ClearlyDefined☆94Updated 3 weeks ago
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆44Updated this week
- free and open source software license compatibility tool.☆47Updated this week
- AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your…☆96Updated this week
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆31Updated 5 months ago
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated 2 weeks ago
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆131Updated this week
- This repository stores meetings minutes for the SPDX project☆29Updated last week
- OSS License Open Data☆12Updated 5 years ago
- Publications done by Double Open.☆16Updated 4 years ago
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆276Updated this week
- PURL to CPE Relationship mapping project.☆84Updated this week
- Umbrella Repository Service for TUF☆45Updated this week
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)☆31Updated last month
- The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.☆316Updated last week
- Check SPDX SBOM for NTIA minimum elements☆61Updated this week
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆84Updated this week
- SPDX 2.0 document creation and storage☆16Updated 2 years ago