Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!
☆47May 1, 2026Updated last month
Alternatives and similar repositories for univers
Users that are interested in univers are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Automate open source license compliance and ensure software supply chain integrity☆47Updated this week
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆65Updated this week
- Common weakness enumeration library for Python (maintained fork of https://github.com/Julian-Nash/cwe )☆15Aug 29, 2024Updated last year
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆205Updated this week
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆687Jun 17, 2026Updated last week
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A library to reliably fetch code via HTTP, FTP and version control systems. This project is sponsored by NLnet project https://nlnet.nl/p…☆12Jun 18, 2026Updated last week
- The Keep It Simple Software Bill of Material☆11Jan 31, 2022Updated 4 years ago
- A python library to parse Debian deb822-style control and copyright files and all related Debian, Ubuntu and Debian-derivative manifest a…☆17Oct 2, 2025Updated 8 months ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆89Mar 11, 2026Updated 3 months ago
- A collection of scripts for license compliance scanning, mostly experimental☆21Jun 16, 2025Updated last year
- SupplyShield is an open-source application security orchestration framework designed to secure your software supply chain from vulnerabil…☆16Apr 23, 2026Updated 2 months ago
- A set of utilities and tools to detect and search AI-generated code☆34May 30, 2025Updated last year
- The International FOSS Law Book, v.2 and onwards☆15Jan 17, 2022Updated 4 years ago
- apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information☆25Feb 4, 2022Updated 4 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners☆14Jun 11, 2026Updated 2 weeks ago
- PURL to CPE Relationship mapping project.☆118Updated this week
- ☆18Jun 19, 2026Updated last week
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- An installer to enable the RPM Python binding in any environment.☆14May 11, 2023Updated 3 years ago
- Service to scan licenses from source code☆12Aug 14, 2023Updated 2 years ago
- A proving grounds for young and aspiring BBOT modules☆15Apr 1, 2026Updated 2 months ago
- CISA Known Exploited Vulnerabilities Catalog Enrichment☆19Jun 24, 2024Updated 2 years ago
- Vulnerability Management with SBOM☆20Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆1,058Updated this week
- A TypeScript implementation of CVSS 2.0, 3.0, 3.1 and 4.0, alongside a web application for calculating scores for multiple CVSS vectors s…☆19Mar 30, 2026Updated 2 months ago
- A credential-helper framework and agent for Bazel and similar tools implementing the credential-helper spec.☆33Jan 8, 2026Updated 5 months ago
- One Git library to Rule -- one API for many git forges☆57Updated this week
- A parser for Python dependency files☆64Nov 25, 2024Updated last year
- OSS License Open Data☆12Jun 28, 2019Updated 7 years ago
- The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…☆19Apr 14, 2026Updated 2 months ago
- Functionality and DataModels of OWASP CycloneDX for Python☆111Jun 20, 2026Updated last week
- ☆19Updated this week
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Project providing insights on the metaeffekt license database.☆12Jun 17, 2026Updated last week
- OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…☆25Apr 21, 2026Updated 2 months ago
- Utility that provides an API and CLI to identify licenses and legal terms☆54Jul 11, 2025Updated 11 months ago
- License Identifier☆15Mar 25, 2021Updated 5 years ago
- free and open source software license compatibility tool.☆53Apr 9, 2025Updated last year
- GitHub action to produce a SBOM report from a given Black Duck project☆12Feb 5, 2026Updated 4 months ago
- A small application which needs a better name and collects oss-license metadata and combines it☆32Mar 16, 2026Updated 3 months ago