Alternatives and similar repositories for sbom4python

Users that are interested in sbom4python are comparing it to the libraries listed below

• aboutcode-org / python-inspector
  Inspect Python code and PyPI package manifests. Resolve Python dependencies.
  ☆24Updated 2 months ago
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆309Updated this week
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆111Updated last month
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆45Updated 10 months ago
• aboutcode-org / purldb
  Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…
  ☆58Updated 3 weeks ago
• CycloneDX / cyclonedx-python-lib
  Functionality and DataModels of OWASP CycloneDX for Python
  ☆98Updated 3 weeks ago
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆24Updated last year
• anthonyharrison / sbomdiff
  This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
  ☆40Updated last year
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆140Updated last month
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆231Updated 6 months ago
• ossf / security-insights
  Machine-readable specification for the attestation of security-relevant data.
  ☆69Updated last week
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆64Updated this week
• CycloneDX / cyclonedx-python
  CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
  ☆351Updated this week
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆211Updated 3 weeks ago
• act-project / TAC
  Automating Compliance Tooling Project
  ☆22Updated 3 years ago
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆132Updated 7 months ago
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆24Updated 11 months ago
• anthonyharrison / sbom2dot
  Create a dependency graph of the components within a SBOM
  ☆15Updated 4 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆50Updated 2 years ago
• aboutcode-org / univers
  Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…
  ☆38Updated 2 months ago
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆33Updated last year
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆29Updated last month
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆85Updated last month
• interlynk-io / sbomasm
  sbomasm: The Complete SBOM Management Toolkit
  ☆98Updated this week
• openvex / spec
  OpenVEX Specification
  ☆163Updated 7 months ago
• interlynk-io / sbomex
  SBOM Explorer - Discover and pull public SBOMs
  ☆20Updated 7 months ago
• anthonyharrison / lib4sbom
  Library to ingest and generate SBOMs
  ☆36Updated 3 weeks ago
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆130Updated last month
• aboutcode-org / container-inspector
  container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…
  ☆37Updated 10 months ago
• vinland-technology / flict
  free and open source software license compatibility tool.
  ☆50Updated 9 months ago