Alternatives and similar repositories for go-spdx

Users that are interested in go-spdx are comparing it to the libraries listed below

• AkihiroSuda / gomodjail
  [Experimental] jail for Go modules
  ☆132Updated 2 weeks ago
• anchore / binny
  Manage a directory of binaries without a package manager
  ☆48Updated last week
• chainguard-dev / go-apk
  native go library for installation and management of apk packages
  ☆31Updated last year
• sigstore / protobuf-specs
  Sigstore's Protocol Buffer specifications
  ☆34Updated this week
• sigstore / friends
  Sigstore user stories
  ☆30Updated 2 years ago
• sigstore / sigstore-go
  Go library for Sigstore signing and verification
  ☆83Updated this week
• veraison / go-cose
  go library for CBOR Object Signing and Encryption (COSE)
  ☆62Updated 3 months ago
• tailscale / mkctr
  mkctr: cross platform container builder for go
  ☆96Updated last month
• actions / attest
  Action for generating attestations for workflow artifacts
  ☆63Updated this week
• goreleaser / example-supply-chain
  Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations
  ☆58Updated last week
• martencassel / go-apkutils
  Golang Implementation for Parsing Alpine Linux APK Packages and APKINDEX Files
  ☆12Updated 9 months ago
• FiloSottile / csrf
  ☆46Updated 5 months ago
• github / go-pipe
  A package used to easily build command pipelines in your Go applications
  ☆55Updated 3 weeks ago
• sigstore / root-signing
  TUF repository for Sigstore trust root
  ☆117Updated this week
• distribution / reference
  Go module implementing general types to represent any way of referencing images within distribution
  ☆44Updated 9 months ago
• wolfi-dev / wolfictl
  A CLI used to work with the Wolfi OSS project
  ☆67Updated last week
• hashicorp / hcl-lang
  Schema and decoder to be used as building blocks for an HCL2-based language server.
  ☆98Updated 2 weeks ago
• FiloSottile / intermediates
  Package filippo.io/intermediates embeds a bundle of known unexpired, unrevoked intermediate certificates chaining to roots in the Mozilla…
  ☆59Updated last week
• package-url / packageurl-go
  Go implementation of the package url spec
  ☆67Updated 2 months ago
• caniszczyk / rugpulls.dev
  ☆37Updated last year
• openvex / go-vex
  Go module to generate and transform VEX documents
  ☆52Updated last week
• googleapis / enterprise-certificate-proxy
  Repository for the Enterprise Certificate Proxy project.
  ☆28Updated 3 weeks ago
• spdx / tools-golang
  Collection of Go packages to work with SPDX files
  ☆157Updated 3 weeks ago
• slsa-framework / slsa-github-generator-go
  ☆58Updated 3 years ago
• chainguard-dev / crow-registry
  ☆26Updated 2 years ago
• buildpacks / imgutil
  Helpful utilities for working with images
  ☆25Updated 2 months ago
• github / proto-gen-go
  A 'go generate' script to generate Go files from .proto interfaces
  ☆26Updated 2 months ago
• secure-systems-lab / go-securesystemslib
  Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU
  ☆27Updated 2 weeks ago
• cue-labs / oci
  Go modules related to OCI (Open Container Initiative) registries
  ☆35Updated last month
• speakeasy-api / jsonpath
  This is a full implementation of RFC 9535 built to be WASM compatible and powers https://overlay.speakeasy.com/
  ☆19Updated 5 months ago