hyperledger-labs / SPartsLinks
The Software Parts (SParts) lab delivers a Sawtooth-based ledger that provides both accountability and access to the open source components used in the construction of a software part. A software part is any software component (e.g., library, application, container or an entire operating system runtime) that is comprised of between 0% and 100% o…
☆12Updated 5 years ago
Alternatives and similar repositories for SParts
Users that are interested in SParts are comparing it to the libraries listed below
Sorting:
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆66Updated last year
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆215Updated 3 months ago
- A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…☆54Updated 2 weeks ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆105Updated this week
- Implementation of the OSCAL REST API☆19Updated last year
- Software Component Verification Standard (SCVS)☆153Updated 10 months ago
- Utility that provides an API platform for validating, querying and managing BOM data☆124Updated last month
- A Java library to support processing OSCAL content☆36Updated last month
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆206Updated last week
- ☆102Updated last year
- OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…☆24Updated 3 years ago
- A Java library for parsing and programmatically using threat models☆82Updated 2 years ago
- Repository for on-going work as part of the SBOM for AI Tiger Team effort.☆40Updated 6 months ago
- A BOM repository server for distributing CycloneDX BOMs☆87Updated 7 months ago
- Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format☆28Updated 2 months ago
- PURL to CPE Relationship mapping project.☆110Updated this week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆478Updated this week
- Examples of SPDX files for software combinations☆142Updated 2 months ago
- Demo setup for compliance-trestle☆37Updated last week
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆52Updated 2 months ago
- An initial OpenAPI definition of an OSCAL REST API.☆41Updated last year
- Tools for the OSCAL project☆37Updated 2 years ago
- Scripts to import OSCAL example content into the Neo4J graph database☆31Updated 3 years ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆47Updated 6 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆237Updated last year
- This project aims to standardize the representation and management of EOL and EOS product information across the industry.☆30Updated last year
- A standard API specification for exchanging supply chain artifacts and intelligence☆98Updated 2 weeks ago
- A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…☆64Updated last year
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆210Updated this week
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆60Updated this week