Alternatives and similar repositories for sbom4python:

Users that are interested in sbom4python are comparing it to the libraries listed below

• anthonyharrison / sbomdiff
  This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
  ☆31Updated 6 months ago
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆80Updated this week
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆21Updated 3 months ago
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆17Updated 4 months ago
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆90Updated last week
• aboutcode-org / python-inspector
  Inspect Python code and PyPI package manifests. Resolve Python dependencies.
  ☆22Updated this week
• interlynk-io / sbomasm
  SBOM Edit - Conditional edits and merging of SBOMs
  ☆69Updated last week
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆28Updated last year
• ossf / toolbelt
  ☆20Updated last month
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆73Updated 3 weeks ago
• philips-software / SPDXMerge
  SPDX Merge tool
  ☆43Updated 2 weeks ago
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆260Updated this week
• interlynk-io / sbomex
  Find & pull public SBOMs
  ☆18Updated 8 months ago
• ossf / security-insights-spec
  Machine-readable specification for the attestation of security-relevant data.
  ☆59Updated this week
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆77Updated last year
• SBOMit / specification
  ☆62Updated 9 months ago
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆51Updated this week
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆105Updated this week
• aboutcode-org / container-inspector
  container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…
  ☆37Updated last month
• aibom-squad / AIBOM-Tiger-Team
  Repository for on-going work as part of the AIBOM Tiger Team effort.
  ☆20Updated last week
• aboutcode-org / purldb
  Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…
  ☆45Updated 3 weeks ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆171Updated last month
• openvex / spec
  OpenVEX Specification
  ☆150Updated last month
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆94Updated last week
• anthonyharrison / lib4sbom
  Library to ingest and generate SBOMs
  ☆25Updated 2 weeks ago
• repository-service-tuf / repository-service-tuf
  Umbrella Repository Service for TUF
  ☆48Updated this week
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆109Updated 2 weeks ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆79Updated this week
• CycloneDX / cyclonedx-web-tool
  A web based tool for working with CycloneDX BOMs
  ☆38Updated 8 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆46Updated last year