aboutcode-org / universLinks
Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!
☆38Updated last week
Alternatives and similar repositories for univers
Users that are interested in univers are comparing it to the libraries listed below
Sorting:
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆86Updated 2 months ago
- PURL to CPE Relationship mapping project.☆110Updated this week
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆58Updated last week
- Functionality and DataModels of OWASP CycloneDX for Python☆102Updated last week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆72Updated 6 months ago
- Automate open source license compliance and ensure software supply chain integrity☆39Updated 3 weeks ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 5 years ago
- Open Source Vulnerability schema.☆230Updated this week
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆24Updated last year
- OSS License Open Data☆12Updated 6 years ago
- The Keep It Simple Software Bill of Material☆11Updated 4 years ago
- sbomasm: The Complete SBOM Management Toolkit☆101Updated this week
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆172Updated 2 weeks ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆110Updated 2 weeks ago
- A Python library to parse, validate and create SPDX documents.☆233Updated 3 weeks ago
- Enrich SBOMs with data from third party services☆214Updated last week
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Updated 2 years ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆79Updated this week
- Advisory database for Python packages published on pypi.org☆317Updated 2 weeks ago
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆265Updated last week
- Project providing insights on the metaeffekt license database.☆12Updated 2 weeks ago
- OSADL license compatibility matrix as a CSV☆17Updated last year
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated 2 weeks ago
- Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …☆186Updated this week
- CaPyCLI - Python scripts for software license compliance automation with SW360☆22Updated 2 weeks ago
- A small application which needs a better name and collects oss-license metadata and combines it☆32Updated 2 months ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆40Updated last year
- Open Source License Compliance Checklists☆11Updated last year
- Publications done by Double Open.☆16Updated 5 years ago
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆59Updated last week