Alternatives and similar repositories for component-detection

Users that are interested in component-detection are comparing it to the libraries listed below

• microsoft / sbom-tool
  The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.
  ☆1,803Updated this week
• CycloneDX / cyclonedx-dotnet
  Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
  ☆217Updated last month
• microsoft / OSSGadget
  Collection of tools for analyzing open source packages.
  ☆339Updated this week
• CycloneDX / cyclonedx-cli
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆366Updated 6 months ago
• ossf / s2c2f
  The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…
  ☆208Updated last week
• microsoft / sarif-sdk
  .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…
  ☆203Updated this week
• microsoft / DevSkim
  DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.
  ☆942Updated last week
• patriksvensson / covenant
  A tool to generate SBOM (Software Bill of Material) from source code artifacts.
  ☆64Updated last week
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆399Updated this week
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆117Updated this week
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆95Updated 6 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆175Updated 2 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆229Updated 9 months ago
• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆128Updated last week
• dotnet / sign
  Code Signing CLI tool supporting Authenticode, NuGet, VSIX, and ClickOnce
  ☆521Updated last week
• CycloneDX / cdxgen
  Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…
  ☆703Updated this week
• CycloneDX / cyclonedx-dotnet-library
  .NET library to consume and produce CycloneDX Software Bill of Materials (SBOM)
  ☆19Updated 4 months ago
• ossf / wg-security-tooling
  OpenSSF Security Tooling Working Group
  ☆311Updated last year
• awesomeSBOM / awesome-sbom
  A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles
  ☆523Updated 2 weeks ago
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆77Updated last year
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆199Updated last week
• microsoft / oss-ssc-framework
  Open Source Software Secure Supply Chain Framework
  ☆235Updated 2 years ago
• opensbom-generator / spdx-sbom-generator
  Support CI generation of SBOMs via golang tooling.
  ☆424Updated 4 months ago
• clearlydefined / clearlydefined
  Doc, wiki and organizational content for ClearlyDefined
  ☆97Updated last month
• microsoft / scim
  Supply Chain Integrity Model
  ☆105Updated last year
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆91Updated this week
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆306Updated last year
• microsoft / sarif-pattern-matcher
  Quality domain agnostic regular expression pattern matcher that persists results to SARIF
  ☆40Updated 3 months ago
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆92Updated last week
• spdx / spdx-spec
  The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
  ☆326Updated last week