Alternatives and similar repositories for CVRF-CSAF-Converter

Users that are interested in CVRF-CSAF-Converter are comparing it to the libraries listed below

• sbomtools / apt2sbom
  apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information
  ☆22Updated 3 years ago
• gocsaf / csaf
  Tools to download or provide CSAF (Common Security Advisory Framework) documents.
  ☆45Updated last week
• secvisogram / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆39Updated this week
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆22Updated 5 months ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆67Updated last month
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated last year
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated 2 years ago
• RedHatProductSecurity / advisory-parser
  A library for parsing security advisories
  ☆13Updated 2 weeks ago
• OpenEoX / openeox
  This project aims to standardize the representation and management of EOL and EOS product information across the industry.
  ☆29Updated last year
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆28Updated last week
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆46Updated 2 years ago
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆191Updated 3 months ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• nyph-infosec / daggerboard
  ☆100Updated 9 months ago
• kissbom / kissbom-spec
  The Keep It Simple Software Bill of Material
  ☆11Updated 3 years ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆116Updated last week
• ossf / tac
  Technical Advisory Council
  ☆127Updated 3 weeks ago
• interlynk-io / sbomasm
  SBOM Edit - Conditional edits and merging of SBOMs
  ☆74Updated 2 weeks ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆21Updated 2 years ago
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆28Updated 3 years ago
• anchore / vulnerability-match-labels
  Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners
  ☆11Updated 3 weeks ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆175Updated this week
• sbs2001 / purl2cpe
  This is a mapping of CPEs to package urls created by using VulnerableCode's data
  ☆10Updated 4 years ago
• ossf / security-insights
  Machine-readable specification for the attestation of security-relevant data.
  ☆59Updated 2 weeks ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• BSI-Bund / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆22Updated last week
• anchore / nvd-data-overrides
  ☆47Updated this week
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆71Updated last month
• D4-project / architecture
  Architecture - design and implementation of the D4 project architecture
  ☆16Updated 2 weeks ago