aboutcode-org / universLinks
Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!
☆38Updated 2 months ago
Alternatives and similar repositories for univers
Users that are interested in univers are comparing it to the libraries listed below
Sorting:
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆79Updated 2 months ago
- Python implementation of OWASP CycloneDX☆92Updated 2 weeks ago
- PURL to CPE Relationship mapping project.☆97Updated this week
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆53Updated 2 weeks ago
- Open Source Vulnerability schema.☆215Updated this week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆70Updated 3 months ago
- Automate open source license compliance and ensure software supply chain integrity☆35Updated this week
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆24Updated 9 months ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 5 years ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Updated last year
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆105Updated 3 weeks ago
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆154Updated this week
- OSADL license compatibility matrix as a CSV☆16Updated 11 months ago
- Utility that provides an API platform for validating, querying and managing BOM data☆122Updated last month
- A Python library to parse, validate and create SPDX documents.☆228Updated 4 months ago
- sbomasm: The Complete SBOM Management Toolkit☆92Updated 3 weeks ago
- OSS License Open Data☆12Updated 6 years ago
- CaPyCLI - Python scripts for software license compliance automation with SW360☆19Updated last month
- Project providing insights on the metaeffekt license database.☆12Updated last week
- Enrich SBOMs with data from third party services☆197Updated 2 months ago
- Publications done by Double Open.☆16Updated 5 years ago
- Check SPDX SBOM for NTIA minimum elements☆73Updated last week
- Low-effort reachability analysis for third-party code vulnerabilities.☆21Updated 2 years ago
- SupplyShield is an open-source application security orchestration framework designed to secure your software supply chain from vulnerabil…☆15Updated last week
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆246Updated 3 weeks ago
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆638Updated last week
- Service to scan licenses from source code☆12Updated 2 years ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆40Updated last year
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆401Updated this week