Alternatives and similar repositories for go-spdx

Users that are interested in go-spdx are comparing it to the libraries listed below

• package-url / packageurl-go
  Go implementation of the package url spec
  ☆62Updated 3 months ago
• github / go-pipe
  A package used to easily build command pipelines in your Go applications
  ☆51Updated 3 weeks ago
• slsa-framework / example-package
  ☆20Updated this week
• github / spokes-receive-pack
  Replacement for git-receive-pack, included with gitrpcd for distribution
  ☆29Updated 2 weeks ago
• github / proto-gen-go
  A 'go generate' script to generate Go files from .proto interfaces
  ☆23Updated last month
• octokit / go-sdk
  A generated Go SDK from GitHub's OpenAPI specification. Built on Kiota.
  ☆82Updated 3 months ago
• FiloSottile / csrf
  ☆28Updated last month
• github / artifact-attestations-helm-charts
  Helm charts for verifying artifact attestations in Kubernetes
  ☆14Updated last week
• sigstore / sigstore-go
  Go library for Sigstore signing and verification
  ☆71Updated last week
• secure-systems-lab / go-securesystemslib
  Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU
  ☆27Updated 2 weeks ago
• sigstore / protobuf-specs
  Sigstore's Protocol Buffer specifications
  ☆33Updated this week
• sigstore / root-signing
  TUF repository for Sigstore trust root
  ☆105Updated this week
• anchore / binny
  Manage a directory of binaries without a package manager
  ☆34Updated this week
• AkihiroSuda / gomodjail
  [Experimental] jail for Go modules
  ☆91Updated 2 weeks ago
• goreleaser / example-supply-chain
  Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations
  ☆58Updated last week
• actions / attest
  Action for generating attestations for workflow artifacts
  ☆52Updated last week
• cli / shurcooL-graphql
  Package graphql provides a GraphQL client implementation.
  ☆24Updated last year
• speakeasy-api / jsonpath
  This is a full implementation of RFC 9535 built to be WASM compatible and powers https://overlay.speakeasy.com/
  ☆16Updated last month
• kortschak / gospel
  misspelled word linter for Go comments, string literals and embedded files
  ☆42Updated 3 months ago
• FiloSottile / intermediates
  Package filippo.io/intermediates embeds a bundle of known unexpired, unrevoked intermediate certificates chaining to roots in the Mozilla…
  ☆59Updated this week
• chainguard-dev / go-apk
  native go library for installation and management of apk packages
  ☆29Updated last year
• slsa-framework / oss-na24-slsa-workshop
  ☆10Updated last year
• chainguard-dev / yam
  A sweet little formatter for YAML
  ☆29Updated this week
• anchore / stereoscope
  go library for processing container images and simulating a squash filesystem
  ☆98Updated this week
• github / s3gof3r
  Fast, concurrent, streaming access to Amazon S3, including gof3r, a CLI. http://godoc.org/github.com/rlmcpherson/s3gof3r
  ☆39Updated 11 months ago
• crazy-max / goreleaser-xx
  Cross compilation helper for GoReleaser
  ☆33Updated 2 years ago
• chainguard-dev / clog
  Context aware slog
  ☆25Updated 3 weeks ago
• cli / safeexec
  A safer version of exec.LookPath on Windows
  ☆95Updated last year
• git-lfs / gitobj
  gitobj reads and writes Git objects.
  ☆36Updated 10 months ago
• ossf / great-mfa-project
  The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute …
  ☆54Updated 3 years ago