Alternatives and similar repositories for sbom4python

Users that are interested in sbom4python are comparing it to the libraries listed below

• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆299Updated this week
• CycloneDX / cyclonedx-python-lib
  Functionality and DataModels of OWASP CycloneDX for Python
  ☆96Updated last week
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆111Updated last week
• aboutcode-org / python-inspector
  Inspect Python code and PyPI package manifests. Resolve Python dependencies.
  ☆24Updated last month
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆44Updated 9 months ago
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆24Updated 11 months ago
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆34Updated last year
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆62Updated this week
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆24Updated 10 months ago
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆228Updated 5 months ago
• CycloneDX / cyclonedx-python
  CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
  ☆343Updated this week
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆139Updated 3 weeks ago
• interlynk-io / sbomasm
  sbomasm: The Complete SBOM Management Toolkit
  ☆94Updated last week
• ossf / security-insights
  Machine-readable specification for the attestation of security-relevant data.
  ☆67Updated 2 months ago
• anthonyharrison / sbomdiff
  This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
  ☆40Updated last year
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆66Updated 3 months ago
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆80Updated 2 weeks ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆202Updated 3 months ago
• anthonyharrison / sbom2dot
  Create a dependency graph of the components within a SBOM
  ☆14Updated 3 months ago
• interlynk-io / sbomex
  SBOM Explorer - Discover and pull public SBOMs
  ☆20Updated 6 months ago
• repository-service-tuf / repository-service-tuf
  Umbrella Repository Service for TUF
  ☆57Updated this week
• anthonyharrison / lib4sbom
  Library to ingest and generate SBOMs
  ☆34Updated 3 weeks ago
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆102Updated this week
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆132Updated 6 months ago
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆29Updated 2 weeks ago
• secure-systems-lab / securesystemslib
  Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
  ☆52Updated last week
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆123Updated 2 months ago
• aboutcode-org / purldb
  Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…
  ☆54Updated last week
• popey / sbommage
  Sbommage is an interactive terminal frontend for viewing Software Bill of Materials (SBOM) files in various formats.
  ☆36Updated last month
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆106Updated last week