Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!
☆42Updated this week
Alternatives and similar repositories for univers
Users that are interested in univers are comparing it to the libraries listed below
Sorting:
- Automate open source license compliance and ensure software supply chain integrity☆40Updated this week
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆60Feb 20, 2026Updated last week
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Jun 4, 2025Updated 8 months ago
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆180Feb 19, 2026Updated last week
- A collection of scripts for license compliance scanning, mostly experimental☆21Jun 16, 2025Updated 8 months ago
- The Keep It Simple Software Bill of Material☆11Jan 31, 2022Updated 4 years ago
- The International FOSS Law Book, v.2 and onwards☆15Jan 17, 2022Updated 4 years ago
- SupplyShield is an open-source application security orchestration framework designed to secure your software supply chain from vulnerabil…☆16Dec 8, 2025Updated 2 months ago
- Cisco Teams bot for Gerrit code reviews.☆13Mar 28, 2023Updated 2 years ago
- A python library to parse Debian deb822-style control and copyright files and all related Debian, Ubuntu and Debian-derivative manifest a…☆16Oct 2, 2025Updated 4 months ago
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆647Updated this week
- The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…☆18Dec 29, 2025Updated last month
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆88Nov 24, 2025Updated 3 months ago
- apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information☆25Feb 4, 2022Updated 4 years ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- A library to reliably fetch code via HTTP, FTP and version control systems. This project is sponsored by NLnet project https://nlnet.nl/p…☆11Nov 28, 2025Updated 2 months ago
- OSS License Open Data☆12Jun 28, 2019Updated 6 years ago
- Project providing insights on the metaeffekt license database.☆12Feb 2, 2026Updated 3 weeks ago
- A library for parsing security advisories☆13Feb 5, 2026Updated 3 weeks ago
- Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners☆14Feb 13, 2026Updated 2 weeks ago
- A TypeScript implementation of CVSS 2.0, 3.0, 3.1 and 4.0, alongside a web application for calculating scores for multiple CVSS vectors s…☆17Oct 17, 2025Updated 4 months ago
- License Identifier☆14Mar 25, 2021Updated 4 years ago
- OSADL license compatibility matrix as a CSV☆17Dec 10, 2024Updated last year
- ☆17Updated this week
- Java Package URL implementation☆14Apr 20, 2023Updated 2 years ago
- FMI's official weather application for mobile devices☆11Updated this week
- A small application which needs a better name and collects oss-license metadata and combines it☆32Updated this week
- ☆19Nov 14, 2024Updated last year
- Publications done by Double Open.☆16Jun 5, 2020Updated 5 years ago
- Lightweight license checker.☆31Nov 5, 2020Updated 5 years ago
- FOSSLight Dependency Scanner☆36Feb 13, 2026Updated 2 weeks ago
- A credential-helper framework and agent for Bazel and similar tools implementing the credential-helper spec.☆29Jan 8, 2026Updated last month
- mGerrit is a Gerrit instance viewer☆18Mar 12, 2018Updated 7 years ago
- An installer to enable the RPM Python binding in any environment.☆14May 11, 2023Updated 2 years ago
- ifrOSS Knowledge Center☆20Feb 3, 2026Updated 3 weeks ago
- A bank account statement analyzer☆20Updated this week
- ☆49Updated this week
- free and open source software license compatibility tool.☆50Apr 9, 2025Updated 10 months ago
- DeltaCode: compare two codebase scans (from ScanCode) to detect significant changes.☆22Sep 3, 2024Updated last year