aboutcode-org / universLinks
Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!
☆38Updated 3 weeks ago
Alternatives and similar repositories for univers
Users that are interested in univers are comparing it to the libraries listed below
Sorting:
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆80Updated last week
- PURL to CPE Relationship mapping project.☆102Updated this week
- Functionality and DataModels of OWASP CycloneDX for Python☆96Updated this week
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆54Updated this week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆71Updated 4 months ago
- Automate open source license compliance and ensure software supply chain integrity☆36Updated this week
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 5 years ago
- Open Source Vulnerability schema.☆217Updated this week
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆155Updated this week
- A Python library to parse, validate and create SPDX documents.☆228Updated 5 months ago
- Enrich SBOMs with data from third party services☆201Updated 3 months ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆111Updated this week
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆24Updated 10 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Updated last year
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆40Updated last year
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated 8 months ago
- sbomasm: The Complete SBOM Management Toolkit☆94Updated this week
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆58Updated 2 weeks ago
- Publications done by Double Open.☆16Updated 5 years ago
- CaPyCLI - Python scripts for software license compliance automation with SW360☆20Updated last week
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆75Updated last week
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆641Updated last week
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆255Updated last week
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆342Updated last week
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆422Updated this week
- The model for the information captured in SPDX version 3 standard.☆95Updated this week
- Utility that provides an API platform for validating, querying and managing BOM data☆123Updated 2 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆106Updated this week
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆210Updated last month