Alternatives and similar repositories for sbom4python

Users that are interested in sbom4python are comparing it to the libraries listed below

• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆310Updated last week
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆45Updated 11 months ago
• aboutcode-org / python-inspector
  Inspect Python code and PyPI package manifests. Resolve Python dependencies.
  ☆24Updated 3 months ago
• CycloneDX / cyclonedx-python-lib
  Functionality and DataModels of OWASP CycloneDX for Python
  ☆102Updated last week
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆25Updated last year
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆110Updated 2 weeks ago
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆233Updated 3 weeks ago
• anthonyharrison / sbomdiff
  This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
  ☆40Updated last year
• anthonyharrison / sbom2dot
  Create a dependency graph of the components within a SBOM
  ☆17Updated 5 months ago
• aboutcode-org / purldb
  Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…
  ☆58Updated last week
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆24Updated last year
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆33Updated 2 years ago
• aboutcode-org / scancode-licensedb
  A free and open database of all the licenses, in particular all the open source software licenses
  ☆58Updated 2 weeks ago
• interlynk-io / sbomasm
  sbomasm: The Complete SBOM Management Toolkit
  ☆101Updated this week
• anthonyharrison / lib4sbom
  Library to ingest and generate SBOMs
  ☆37Updated this week
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆110Updated this week
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆64Updated last week
• aboutcode-org / license-expression
  Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …
  ☆72Updated 6 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆214Updated last week
• sony / esstra
  A software suite for enhancing software supply chain transparency
  ☆29Updated last month
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆29Updated 2 months ago
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆66Updated 5 months ago
• scanoss / sbom-workbench
  The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.
  ☆59Updated last week
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆142Updated 2 months ago
• repository-service-tuf / repository-service-tuf
  Umbrella Repository Service for TUF
  ☆59Updated this week
• kissbom / kissbom-spec
  The Keep It Simple Software Bill of Material
  ☆11Updated 4 years ago
• ossf / security-insights
  Machine-readable specification for the attestation of security-relevant data.
  ☆72Updated this week
• csaf-tools / CVRF-CSAF-Converter
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Updated 8 months ago
• spdx / ntia-conformance-checker
  Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.
  ☆79Updated this week
• aboutcode-org / container-inspector
  container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…
  ☆37Updated 2 weeks ago