Alternatives and similar repositories for purldb

Users that are interested in purldb are comparing it to the libraries listed below

• aboutcode-org / scancode.io
  ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…
  ☆133Updated last week
• aboutcode-org / univers
  Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…
  ☆36Updated 7 months ago
• aboutcode-org / dejacode
  Automate open source license compliance and ensure software supply chain integrity
  ☆31Updated this week
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆74Updated last week
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆83Updated last week
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆92Updated last week
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆17Updated 5 months ago
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆82Updated this week
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆91Updated this week
• aboutcode-org / python-inspector
  Inspect Python code and PyPI package manifests. Resolve Python dependencies.
  ☆22Updated 2 weeks ago
• aboutcode-org / container-inspector
  container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…
  ☆37Updated 2 months ago
• ossf / security-insights-spec
  Machine-readable specification for the attestation of security-relevant data.
  ☆59Updated 3 weeks ago
• spdx / ntia-conformance-checker
  Check SPDX SBOM for NTIA minimum elements
  ☆62Updated this week
• interlynk-io / sbomasm
  SBOM Edit - Conditional edits and merging of SBOMs
  ☆69Updated this week
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆211Updated last month
• interlynk-io / sbomex
  SBOM Explorer - Discover and pull public SBOMs
  ☆18Updated last week
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆106Updated this week
• anthonyharrison / sbomdiff
  This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
  ☆31Updated 7 months ago
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆96Updated last week
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆80Updated 6 months ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆81Updated this week
• openvex / spec
  OpenVEX Specification
  ☆150Updated this week
• kusaridev / skootrs
  A CLI tool for creating secure by design/default source repos.
  ☆25Updated 10 months ago
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆29Updated last year
• aboutcode-org / license-expression
  Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …
  ☆66Updated 2 months ago
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆26Updated last week
• anchore / vulnerability-match-labels
  Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners
  ☆11Updated last week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆199Updated last week
• ossf / alpha-omega
  Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
  ☆104Updated 3 weeks ago
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆49Updated this week