Alternatives and similar repositories for LiResolver

Users that are interested in LiResolver are comparing it to the libraries listed below

• XuSihan / LiDetector
  ☆35Updated last year
• SAP / project-kb
  Home page of project "KB"
  ☆132Updated 10 months ago
• dmgerman / ninka
  a license identification tool for Source Code
  ☆111Updated 3 years ago
• SAP-samples / cross-language-detection-artifacts
  This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…
  ☆22Updated 11 months ago
• assuremoss / lastpymile
  A reimplementation of LastPyMile: A Python-based library to Identify the differences between build artifacts of PyPI packages and the res…
  ☆15Updated 4 years ago
• aboutcode-org / dejacode
  Automate open source license compliance and ensure software supply chain integrity
  ☆39Updated 3 weeks ago
• doubleopen-project / doubleopen-publications
  Publications done by Double Open.
  ☆16Updated 5 years ago
• vuduclyunitn / software_supply_chain_papers
  This repository contains a list of papers about software supply chain
  ☆29Updated last year
• ossf / malicious-packages
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆449Updated this week
• lyvd / bad-snakes-icse23-artifacts
  The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning
  ☆13Updated 2 years ago
• OpenChain-Project / Security-Assurance-Specification
  ☆24Updated last year
• ldklab / typomind-release
  ☆13Updated 2 years ago
• Mondego / SourcererCC
  Sourcerer's Code Clone project
  ☆220Updated 3 years ago
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆192Updated this week
• maxhbr / LDBcollector
  A small application which needs a better name and collects oss-license metadata and combines it
  ☆32Updated 2 months ago
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆110Updated this week
• spdx / spdx-spec
  The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
  ☆353Updated this week
• package-url / purl-spec
  A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
  ☆968Updated this week
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆79Updated this week
• osslab-pku / LiCoEval
  ☆13Updated 6 months ago
• anthonyharrison / sbomdiff
  This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
  ☆40Updated last year
• githubnext / amalfi-artifact
  Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
  ☆47Updated 4 years ago
• spdx / meetings
  This repository stores meetings minutes for the SPDX project
  ☆37Updated last week
• OpenChain-Project / SBOM-sg
  This is the GitHub repo of the OpenChain SBOM Study Group
  ☆12Updated 6 months ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆478Updated this week
• lkpsg / ccscanner
  A C/C++ dependency scanner
  ☆41Updated 2 years ago
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆110Updated 2 weeks ago
• spdx / tools
  SPDX Tools
  ☆143Updated 4 months ago
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆301Updated this week
• AevaOnline / supply-chain-synthesis
  Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.
  ☆33Updated 2 years ago