anthonyharrison / sbom4pythonLinks
A tool to generate a SBOM (Software Bill of Materials) for an installed Python module
☆33Updated last month
Alternatives and similar repositories for sbom4python
Users that are interested in sbom4python are comparing it to the libraries listed below
Sorting:
- Report on quality of SBOM contents☆19Updated 7 months ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆97Updated 2 weeks ago
- Python implementation of OWASP CycloneDX☆84Updated last week
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆24Updated 2 weeks ago
- Software Bill-of-Materials documents for Python packages☆42Updated 5 months ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆32Updated 9 months ago
- A Sigstore client written in Python☆284Updated this week
- Examples of SPDX files for software combinations☆133Updated last month
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆22Updated 6 months ago
- SBOM Edit - Conditional edits and merging of SBOMs☆74Updated last week
- A Python library to parse, validate and create SPDX documents.☆225Updated last month
- Library to ingest and generate SBOMs☆28Updated 3 weeks ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Updated last year
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆316Updated last week
- A GitHub Action for sigstore-python☆54Updated last week
- Machine-readable specification for the attestation of security-relevant data.☆60Updated 3 weeks ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆69Updated 2 weeks ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆77Updated this week
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆51Updated last week
- The model for the information captured in SPDX version 3 standard.☆91Updated this week
- SBOM Explorer - Discover and pull public SBOMs☆20Updated 2 months ago
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆38Updated 4 months ago
- OpenVEX Specification☆156Updated 2 months ago
- SBOM Search - Context aware search in SBOM repositories☆28Updated last week
- Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.☆123Updated last month
- PURL to CPE Relationship mapping project.☆91Updated this week
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Updated 2 months ago
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- Enrich SBOMs with data from third party services☆181Updated 2 weeks ago
- Repository for on-going work as part of the SBOM for AI Tiger Team effort.☆35Updated last week