defenseunicorns / go-oscalLinks
Repository for the generation of OSCAL data types
☆24Updated last week
Alternatives and similar repositories for go-oscal
Users that are interested in go-oscal are comparing it to the libraries listed below
Sorting:
- NIST OSCAL SDK and CLI☆19Updated 2 months ago
- vexctl is a tool to attest VEX impact statements☆45Updated 2 years ago
- A tool to create, transform and attest VEX metadata☆152Updated this week
- Demo setup for compliance-trestle☆35Updated 5 months ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆201Updated this week
- The Compliance Validator☆183Updated this week
- SBOM Move - Automate build and transfer of SBOMs across systems☆23Updated this week
- A Java library to support processing OSCAL content☆34Updated last week
- The Auditree framework tool to run compliance control checks as unit tests.☆70Updated last year
- OpenVEX Specification☆156Updated 2 months ago
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆99Updated this week
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆33Updated 2 years ago
- Go implementation of witness☆37Updated this week
- TACOS framework structural details☆20Updated 3 months ago
- ☆16Updated last year
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆101Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆233Updated last year
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated 2 years ago
- A BOM repository server for distributing CycloneDX BOMs☆77Updated 2 months ago
- Various deployments of the OSCAL editor☆46Updated last year
- Compare vulnerability scanners results (to make them better!)☆22Updated this week
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆18Updated this week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆32Updated 4 months ago
- Visualizer for GUAC☆28Updated 2 weeks ago
- Deploy custom push protections and policies on top of Git☆161Updated this week
- Privateer is a plugin-based framework to validate the status of deployed resources.☆12Updated this week
- Open source tool for processing OSCAL based FedRAMP SSPs☆42Updated 10 months ago
- ☆65Updated last year
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- Format agnostic SBOM tooling☆116Updated 2 weeks ago