Alternatives and similar repositories for distro2SBOM

Users that are interested in distro2SBOM are comparing it to the libraries listed below

• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆19Updated 7 months ago
• ossf / ossf-landscape
  ☆30Updated this week
• fdo-rs / fido-device-onboard-rs
  An implementation of the FIDO Device Onboard (FDO) spec written in Rust.
  ☆68Updated 3 weeks ago
• CycloneDX / cyclonedx-linux-generator
  Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions
  ☆48Updated last month
• edera-dev / linux-openpax
  Linux kernel source tree with OpenPaX patch
  ☆93Updated 4 months ago
• cybeats / sbomgen
  List of SBOM Generation Tools
  ☆27Updated 5 months ago
• CumulusNetworks / DUE
  A user friendly build environment generator for building .debs, .rpms, ONIE and more.
  ☆62Updated last month
• smallstep / step-kms-plugin
  🔐 step plugin to manage keys and certificates on a cloud KMSs and HSMs
  ☆64Updated this week
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆114Updated this week
• ossf / security-insights
  Machine-readable specification for the attestation of security-relevant data.
  ☆60Updated 3 weeks ago
• caniszczyk / rugpulls.dev
  ☆34Updated last year
• jeefy / booty
  A simple (i)PXE Server for booting Flatcar-Linux and CoreOS
  ☆43Updated 10 months ago
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆70Updated 7 months ago
• pantavisor / pantavisor
  The near bare metal multi-container supervisor and OS management system.
  ☆58Updated this week
• EOSC-synergy / ssh-oidc
  Documentation for SSH with OIDC
  ☆58Updated 10 months ago
• linuxboot / contest
  Run continuous and on-demand system testing for real and virtual hardware
  ☆19Updated last year
• eclipse-bluechi / bluechi
  Eclipse BlueChi is a systemd service controller intended for multi-node environments with a predefined number of nodes and with a focus o…
  ☆140Updated last week
• kusaridev / spector
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆32Updated 3 months ago
• in-toto / specification
  Specification and other related documents.
  ☆49Updated 7 months ago
• philips-software / SPDXMerge
  SPDX Merge tool
  ☆46Updated 3 months ago
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆101Updated this week
• anchore / grant
  Search an SBOM for licenses and the packages they belong to
  ☆99Updated this week
• openvex / spec
  OpenVEX Specification
  ☆156Updated 2 months ago
• containers / initoverlayfs
  ☆40Updated last year
• orcwg / cra-hub
  Everything you ever wanted to know about the CRA and its implementation
  ☆118Updated last week
• osbuild / osbuild-composer
  An HTTP service for building bootable OS images.
  ☆183Updated this week
• lf-edge / runx
  ☆40Updated 2 years ago
• SBOMit / specification
  ☆63Updated last year
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆45Updated 2 years ago
• sipeed / NanoCluster
  NanoCluster: Compact & Affordable Cluster for Everyone
  ☆87Updated 2 months ago