kissbom / kissbom-spec
The Keep It Simple Software Bill of Material
☆11Updated 3 years ago
Alternatives and similar repositories for kissbom-spec:
Users that are interested in kissbom-spec are comparing it to the libraries listed below
- OSS License Open Data☆12Updated 5 years ago
- CaPyCLI - Python scripts for software license compliance automation with SW360☆16Updated this week
- OSADL license compatibility matrix as a CSV☆16Updated 3 months ago
- Publications done by Double Open.☆16Updated 4 years ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆31Updated 5 months ago
- Service to scan licenses from source code☆12Updated last year
- ☆19Updated 4 months ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆9Updated 4 years ago
- Project providing insights on the metaeffekt license database.☆12Updated last week
- A small application which needs a better name and collects oss-license metadata and combines it☆31Updated 2 months ago
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆84Updated last week
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆21Updated this week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆64Updated last month
- Utility that converts SBOM documents from CycloneDX to SPDX☆28Updated last year
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆67Updated this week
- A collection of scripts for license compliance scanning, mostly experimental☆22Updated 2 months ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆20Updated 2 months ago
- Automating Compliance Tooling Project☆21Updated 3 years ago
- free and open source software license compatibility tool.☆47Updated this week
- The model for the information captured in SPDX version 3 standard.☆80Updated last week
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs …☆34Updated 5 months ago
- Check SPDX SBOM for NTIA minimum elements☆61Updated this week
- Automate open source license compliance and ensure software supply chain integrity☆30Updated this week
- A light-weight app to audit and inventory large codebases for open source license compliance.☆61Updated this week
- This repository stores meetings minutes for the SPDX project☆29Updated last week
- This is the OpenChain Telco Work Group☆14Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆86Updated last week
- Python implementation of OWASP CycloneDX☆79Updated this week
- A rest client using shell scripts for the integration of FOSSology into a CI system☆14Updated 2 months ago
- SW360 Antenna project☆22Updated 4 years ago