bgnetworks / meta-dependencytrack
A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.
☆20Updated 11 months ago
Alternatives and similar repositories for meta-dependencytrack:
Users that are interested in meta-dependencytrack are comparing it to the libraries listed below
- Vulnerability management tool that provides Yocto SBOM generation and CVE Analysis of target images.☆37Updated this week
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆51Updated this week
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated last year
- apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information☆22Updated 3 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆108Updated this week
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆58Updated last year
- sbomify is an SBOM management platform.☆24Updated this week
- Library to ingest and generate VEX documents☆15Updated 2 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆28Updated last year
- Library to ingest and generate SBOMs☆25Updated last week
- Posture Attribute Collection and Evaluation☆23Updated last year
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆64Updated 3 weeks ago
- PURL to CPE Relationship mapping project.☆87Updated this week
- CveXplore☆38Updated 3 weeks ago
- ☆100Updated 6 months ago
- Check SPDX SBOM for NTIA minimum elements☆62Updated 3 weeks ago
- SBOM Vulnerability Scanning & Assessment tool☆15Updated last month
- ☆13Updated this week
- Sharing software supply chain security open source projects☆49Updated 2 years ago
- Plain text version of the OSADL Open Source Policy Template: The Basis for License Compliance☆20Updated 2 years ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆31Updated 5 months ago
- Find & pull public SBOMs☆18Updated 8 months ago
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆64Updated 10 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆93Updated last week
- A web based tool for working with CycloneDX BOMs☆38Updated 8 months ago
- Tool for creating, modifying and validating CycloneDX SBOMs.☆26Updated this week
- SCANOSS Open Source Inventory Engine☆38Updated last month
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆74Updated 2 weeks ago
- Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions☆47Updated 11 months ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆9Updated 4 years ago