aboutcode-org / universLinks
Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!
☆37Updated 2 weeks ago
Alternatives and similar repositories for univers
Users that are interested in univers are comparing it to the libraries listed below
Sorting:
- PURL to CPE Relationship mapping project.☆91Updated this week
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆75Updated 2 weeks ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 4 years ago
- Python implementation of OWASP CycloneDX☆84Updated this week
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆22Updated 5 months ago
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆49Updated 2 weeks ago
- Automate open source license compliance and ensure software supply chain integrity☆33Updated this week
- A Python library to parse, validate and create SPDX documents.☆219Updated last week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆67Updated 2 weeks ago
- Open Source Vulnerability schema.☆204Updated this week
- CaPyCLI - Python scripts for software license compliance automation with SW360☆19Updated 2 weeks ago
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆141Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆95Updated last week
- Project providing insights on the metaeffekt license database.☆12Updated this week
- SBOM Edit - Conditional edits and merging of SBOMs☆73Updated 2 weeks ago
- OSS License Open Data☆12Updated 6 years ago
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆600Updated this week
- The model for the information captured in SPDX version 3 standard.☆87Updated last week
- Feed parsing for language package manager updates☆79Updated 7 months ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆316Updated last week
- SW360 Antenna project☆22Updated 4 years ago
- free and open source software license compatibility tool.☆48Updated 3 months ago
- A small application which needs a better name and collects oss-license metadata and combines it☆32Updated 2 months ago
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆301Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Updated last year
- The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.☆331Updated this week
- NVD API 2.0 client for CVE information☆11Updated 2 months ago
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆191Updated 3 months ago
- Service to scan licenses from source code☆12Updated last year