finos-labs / osmm
Open Source Maturity Model
☆15Updated 10 months ago
Alternatives and similar repositories for osmm:
Users that are interested in osmm are comparing it to the libraries listed below
- OpenSSF Endusers Working Group☆28Updated last year
- OSPO Landscape☆34Updated 2 weeks ago
- Materials for the ISPO working group☆23Updated last month
- Potential WG on Artificial Intelligence and Machine Learning (AI/ML)☆69Updated 5 months ago
- ☆19Updated 9 months ago
- Check SPDX SBOM for NTIA minimum elements☆60Updated last week
- A CLI tool for creating secure by design/default source repos.☆25Updated 7 months ago
- Visualizer for GUAC☆28Updated last week
- ☆61Updated 8 months ago
- Technical Advisory Council☆118Updated this week
- Automating Compliance Tooling Project☆20Updated 3 years ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆61Updated this week
- Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …☆180Updated last year
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Updated last year
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆33Updated last month
- Machine-readable specification for the attestation of security-relevant data.☆57Updated last week
- A collection of guidelines and resources from Citi's Open Source Program Office☆48Updated 11 months ago
- Templates and commandline tools for creating repositories for US Federal open source projects☆26Updated this week
- Examples of SPDX files for software combinations☆128Updated last month
- ☆21Updated 4 months ago
- The model for the information captured in SPDX version 3 standard.☆77Updated last week
- Generate a score for your sbom to understand if it will actually be useful.☆226Updated 7 months ago
- Accelerate financial services firms’ journeys toward open source readiness, by advancing the readiness of participants’ firms and informi…☆37Updated last week
- Documentation and guidance for handling outbound open source for organizations☆20Updated 2 years ago
- Utility that provides an API and CLI to identify licenses and legal terms☆43Updated 9 months ago
- This repo is for tracking activities that we work on during TODO Group Work Days☆15Updated 2 years ago
- A BOM repository server for distributing CycloneDX BOMs☆75Updated last year
- Vuln Disclosure WG's new SIG☆10Updated last year
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆178Updated this week
- OpenSSF Working Group on Securing Software Repositories☆100Updated 4 months ago