bgnetworks / meta-dependencytrackLinks
A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.
☆21Updated last year
Alternatives and similar repositories for meta-dependencytrack
Users that are interested in meta-dependencytrack are comparing it to the libraries listed below
Sorting:
- Vulnerability management tool that provides Yocto SBOM generation and CVE Analysis of target images.☆37Updated 2 months ago
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆53Updated 2 weeks ago
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated 2 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆113Updated 3 weeks ago
- Library to ingest and generate SBOMs☆26Updated this week
- PURL to CPE Relationship mapping project.☆91Updated last week
- Library to ingest and generate VEX documents☆15Updated 4 months ago
- Tool for creating, modifying and validating CycloneDX SBOMs.☆27Updated this week
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆61Updated last year
- Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions☆47Updated last year
- apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information☆22Updated 3 years ago
- SBOM Search - Context aware search in SBOM repositories☆27Updated 3 weeks ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆99Updated this week
- The model for the information captured in SPDX version 3 standard.☆85Updated last week
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆64Updated last year
- A standard API specification for exchanging supply chain artifacts and intelligence☆82Updated last week
- ☆47Updated this week
- SBOM Edit - Conditional edits and merging of SBOMs☆70Updated last week
- Check SPDX SBOM for NTIA minimum elements☆64Updated last week
- Utility that converts SBOM documents from CycloneDX to SPDX☆30Updated last year
- ☆100Updated 8 months ago
- The SCANOSS python package providing a simple, easy to consume library for interacting with SCANOSS APIs/Engine.☆32Updated this week
- SCANOSS Open Source Inventory Engine☆39Updated 2 weeks ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 4 years ago
- Sharing software supply chain security open source projects☆50Updated 2 years ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆31Updated 7 months ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆22Updated 5 months ago
- SBOM Explorer - Discover and pull public SBOMs☆19Updated last month
- Audit C/C++ projects (make, cmake, command line, etc.)☆27Updated 3 years ago
- SPDX Merge tool☆45Updated 2 months ago