Alternatives and similar repositories for product-kit_core

Users that are interested in product-kit_core are comparing it to the libraries listed below

• mercedes-benz / mercedes-benz-foss-manifesto
  This is the Mercedes-Benz FOSS Manifesto - our path to embrace Open Source
  ☆79Updated 3 weeks ago
• mercedes-benz / sechub
  SecHub provides a central API to test software with different security tools.
  ☆336Updated this week
• mercedes-benz / foss
  A collection of information on Mercedes-Benz Open Source Stuff - Code of Conduct, Mercedes-Benz CLA, and more.
  ☆100Updated this week
• mercedes-benz / disclosure-cli
  The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…
  ☆14Updated last month
• CycloneDX / cyclonedx-web-tool
  A web based tool for working with CycloneDX BOMs
  ☆38Updated 9 months ago
• uptane / uptane.github.io
  UPTANE web site
  ☆37Updated last month
• renovatebot / osv-offline
  A collection of packages for using GitHub security advisories in Node.js.
  ☆16Updated this week
• SolboxOSS / sproxy
  Reverse proxy for ultra-low latency streaming
  ☆31Updated last year
• scanoss / sbom-workbench
  The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.
  ☆53Updated last week
• spdx / ntia-conformance-checker
  Check SPDX SBOM for NTIA minimum elements
  ☆62Updated this week
• orcwg / cra-hub
  Everything you ever wanted to know about the CRA and its implementation
  ☆97Updated this week
• Festo-se / cyclonedx-editor-validator
  Tool for creating, modifying and validating CycloneDX SBOMs.
  ☆27Updated this week
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆77Updated last year
• sigstore / sigstore-js
  Code-signing for npm packages
  ☆162Updated this week
• Open-Source-Compliance / Sharing-creates-value
  This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles
  ☆88Updated last week
• bgnetworks / meta-dependencytrack
  A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.
  ☆21Updated last year
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆131Updated 3 weeks ago
• CycloneDX / cyclonedx-linux-generator
  Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions
  ☆47Updated last year
• in-toto / attestation
  in-toto Attestation Framework
  ☆275Updated 2 weeks ago
• fsfe / reuse-action
  A GitHub action to check repositories for REUSE compliance
  ☆70Updated 3 months ago
• anthonyharrison / distro2SBOM
  Generates SBOM files from system packaging information
  ☆28Updated last month
• ossf / s2c2f
  The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…
  ☆208Updated last week
• opensbom-generator / spdx-sbom-generator
  Support CI generation of SBOMs via golang tooling.
  ☆424Updated 4 months ago
• chainloop-dev / chainloop
  Evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more
  ☆455Updated last week
• cdfoundation / sig-security-sbom
  SIG Security - Software Bill of Materials
  ☆18Updated 2 years ago
• swinslow / cmake-spdx
  Create SPDX documents automatically with CMake build info
  ☆28Updated 4 years ago
• oracle / macaron
  Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …
  ☆157Updated this week
• InnerSourceCommons / innersourcecommons.org
  InnerSource Commons main website
  ☆28Updated this week
• CycloneDX / cyclonedx-node-npm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
  ☆88Updated this week
• act-project / TAC
  Automating Compliance Tooling Project
  ☆21Updated 3 years ago