mitre/hipcheck external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mitre/hipcheck

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mitre/hipcheck)

Close

mitre / hipcheckView on GitHubMore

• External links
• Readme badge

Automatically assess and score software repositories for supply chain risk.

☆124Apr 30, 2026Updated this week

Alternatives and similar repositories for hipcheck

Users that are interested in hipcheck are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• SBOM-Community / SBOM-Generation

  View on GitHub
  Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team
  ☆33Feb 2, 2026Updated 3 months ago
• cybeats / sbomgen

  View on GitHub
  List of SBOM Generation Tools
  ☆32Mar 7, 2025Updated last year
• saidsay-so / gateau

  View on GitHub
  Use your cookies from browsers in your curl, wget and httpie requests!
  ☆19Apr 22, 2026Updated last week
• ossf / security-insights

  View on GitHub
  Machine-readable specification for the attestation of security-relevant data.
  ☆75Apr 17, 2026Updated 2 weeks ago
• ossf / sbom-everywhere

  View on GitHub
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆113Feb 28, 2026Updated 2 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• aibom-squad / AIBOM-RSA-2024

  View on GitHub
  AIBOM Workshop RSA 2024
  ☆15May 20, 2024Updated last year
• spdx / spdx-3-model

  View on GitHub
  The model for the information captured in SPDX version 3 standard.
  ☆97Apr 25, 2026Updated last week
• Punderthings / fossfoundation

  View on GitHub
  Directory of non-profit FOSS Foundations, with detailed metadata.
  ☆26Nov 29, 2025Updated 5 months ago
• OpenChain-Project / Telco-WG

  View on GitHub
  This is the OpenChain Telco Work Group
  ☆20Apr 2, 2026Updated last month
• bomctl / bomctl

  View on GitHub
  Format agnostic SBOM tooling
  ☆137Nov 20, 2025Updated 5 months ago
• axodotdev / Maintainers-Read-the-CRA

  View on GitHub
  ☆10Jul 24, 2024Updated last year
• DSACMS / repo-scaffolder

  View on GitHub
  Templates and commandline tools for creating repositories for US Federal open source projects
  ☆41Apr 1, 2026Updated last month
• ossf / scorecard-monitor

  View on GitHub
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆48Apr 25, 2026Updated last week
• GSA / open-source-policy

  View on GitHub
  GSA open source policy guidance repository with official policy found at
  ☆14Oct 2, 2018Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• sboysel / open-source-funding-toolkit

  View on GitHub
  A collection of resources to improve insight into your organization's open source contribution
  ☆21Nov 27, 2024Updated last year
• llnl / scraper

  View on GitHub
  Python library for getting metadata from source code hosting tools
  ☆55Jan 26, 2026Updated 3 months ago
• mystak23 / Sentinel_Deployment

  View on GitHub
  Automatic Microsoft Sentinel Deployment
  ☆16Apr 1, 2025Updated last year
• transparencylog / tl

  View on GitHub
  verify https assets with a public transparency log
  ☆75Oct 28, 2021Updated 4 years ago
• softwaresaved / rse-repo-analysis

  View on GitHub
  Study of research software in repositories. Contact: @karacolada
  ☆13Aug 14, 2024Updated last year
• mprpic / cvelint

  View on GitHub
  CLI tool to validate CVE v5 JSON records.
  ☆13May 14, 2025Updated 11 months ago
• eBay / sbom-scorecard

  View on GitHub
  Generate a score for your sbom to understand if it will actually be useful.
  ☆242Aug 13, 2024Updated last year
• interlynk-io / sbomex

  View on GitHub
  SBOM Explorer - Discover and pull public SBOMs
  ☆21May 23, 2025Updated 11 months ago
• gborough / roscal

  View on GitHub
  Open Security Controls Assessment Language Toolbox
  ☆18Apr 22, 2026Updated last week
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• swinslow / cmake-spdx

  View on GitHub
  Create SPDX documents automatically with CMake build info
  ☆32May 2, 2021Updated 5 years ago
• spdx / ntia-conformance-checker

  View on GitHub
  Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.
  ☆86Apr 20, 2026Updated last week
• interlynk-io / sbomgr

  View on GitHub
  SBOM Search - Context aware search in SBOM repositories
  ☆32Nov 24, 2025Updated 5 months ago
• hackebrot / go-librariesio

  View on GitHub
  API client for libraries.io written in Go
  ☆11Jun 7, 2017Updated 8 years ago
• ossf / security-reviews

  View on GitHub
  A community collection of security reviews of open source software components.
  ☆99Feb 29, 2024Updated 2 years ago
• CMSgov / cms-open-source-policy

  View on GitHub
  CMS' Open Source Policy
  ☆11Feb 13, 2025Updated last year
• ossf / ai-ml-security

  View on GitHub
  Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security
  ☆166Dec 19, 2025Updated 4 months ago
• publiccodenet / publiccode.yml

  View on GitHub
  A metadata description standard for public software and policy repositories
  ☆19Jan 8, 2019Updated 7 years ago
• Rhosys / soc2.fyi

  View on GitHub
  SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.
  ☆55Apr 23, 2026Updated last week
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• swhid / specification

  View on GitHub
  Specification of the SWHID identifier
  ☆15Dec 14, 2025Updated 4 months ago
• ossf / Project-Security-Metrics

  View on GitHub
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Mar 13, 2024Updated 2 years ago
• ossf / tac

  View on GitHub
  Technical Advisory Council
  ☆141Apr 14, 2026Updated 2 weeks ago
• CycloneDX / transparency-exchange-api

  View on GitHub
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆106Mar 25, 2026Updated last month
• IBM / CBOM

  View on GitHub
  Cryptography Bill of Materials
  ☆102Sep 17, 2025Updated 7 months ago
• alilleybrinker / cargo-spdx

  View on GitHub
  Generate an SPDX Software Bill of Materials for Rust crates.
  ☆20Aug 10, 2022Updated 3 years ago
• codeGROOVE-dev / goose

  View on GitHub
  Menubar for smart GitHub pull request tracking & notifications
  ☆33Apr 13, 2026Updated 2 weeks ago