kissbom / kissbom-specLinks
The Keep It Simple Software Bill of Material
☆11Updated 3 years ago
Alternatives and similar repositories for kissbom-spec
Users that are interested in kissbom-spec are comparing it to the libraries listed below
Sorting:
- OSS License Open Data☆12Updated 6 years ago
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆37Updated this week
- CaPyCLI - Python scripts for software license compliance automation with SW360☆19Updated this week
- Publications done by Double Open.☆16Updated 5 years ago
- Service to scan licenses from source code☆12Updated last year
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 4 years ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Updated last year
- Project providing insights on the metaeffekt license database.☆12Updated last week
- free and open source software license compatibility tool.☆48Updated 4 months ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆22Updated 6 months ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆69Updated 2 weeks ago
- Automate open source license compliance and ensure software supply chain integrity☆34Updated this week
- OSADL license compatibility matrix as a CSV☆16Updated 8 months ago
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆38Updated 4 months ago
- PURL to CPE Relationship mapping project.☆91Updated this week
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆32Updated 9 months ago
- Python implementation of OWASP CycloneDX☆84Updated last week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆97Updated 2 weeks ago
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆24Updated 2 weeks ago
- A small application which needs a better name and collects oss-license metadata and combines it☆32Updated 3 months ago
- SBOM Edit - Conditional edits and merging of SBOMs☆74Updated last week
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆77Updated this week
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Updated 2 months ago
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆51Updated last week
- A Python library to parse, validate and create SPDX documents.☆225Updated last month
- SPDX 2.0 document creation and storage☆16Updated 2 years ago
- This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …☆49Updated this week
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆88Updated 2 months ago
- The model for the information captured in SPDX version 3 standard.☆91Updated this week
- ☆19Updated 8 months ago