aboutcode-org / universLinks
Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!
☆38Updated last month
Alternatives and similar repositories for univers
Users that are interested in univers are comparing it to the libraries listed below
Sorting:
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆85Updated last month
- PURL to CPE Relationship mapping project.☆106Updated this week
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 5 years ago
- Functionality and DataModels of OWASP CycloneDX for Python☆97Updated this week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆71Updated 5 months ago
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆57Updated this week
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆24Updated 11 months ago
- Automate open source license compliance and ensure software supply chain integrity☆37Updated last week
- A Python library to parse, validate and create SPDX documents.☆231Updated 5 months ago
- Open Source Vulnerability schema.☆221Updated this week
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆75Updated this week
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆40Updated last year
- OSS License Open Data☆12Updated 6 years ago
- sbomasm: The Complete SBOM Management Toolkit☆94Updated last week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆111Updated 3 weeks ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Updated last year
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆162Updated this week
- Enrich SBOMs with data from third party services☆204Updated last week
- Feed parsing for language package manager updates☆80Updated last year
- CaPyCLI - Python scripts for software license compliance automation with SW360☆21Updated last week
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆258Updated last week
- The model for the information captured in SPDX version 3 standard.☆97Updated 2 weeks ago
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆204Updated 2 months ago
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆347Updated this week
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated 9 months ago
- apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information☆25Updated 3 years ago
- Publications done by Double Open.☆16Updated 5 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆124Updated 3 months ago
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆212Updated 2 months ago