oasis-tcs/csaf

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/oasis-tcs/csaf)

oasis-tcs / csaf

OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secondary artifacts like meeting minutes and productivity code

☆210

Alternatives and similar repositories for csaf

Users that are interested in csaf are comparing it to the libraries listed below

Sorting:

secvisogram / secvisogram
View on GitHub
Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
☆41Feb 25, 2026Updated last week
gocsaf / csaf
View on GitHub
Tools to download or provide CSAF (Common Security Advisory Framework) documents.
☆57Dec 18, 2025Updated 2 months ago
CycloneDX / bom-examples
View on GitHub
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
☆218Oct 21, 2025Updated 4 months ago
BSI-Bund / secvisogram
View on GitHub
Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
☆29Feb 22, 2026Updated last week
chainguard-sandbox / bom-shelter
View on GitHub
A place to systematically store software bill of materials (SBOM) documents.
☆50Jun 1, 2023Updated 2 years ago
OpenEoX / openeox
View on GitHub
This project aims to standardize the representation and management of EOL and EOS product information across the industry.
☆30Mar 4, 2024Updated 2 years ago
oasis-open / csaf-parser
View on GitHub
OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…
☆24Jul 14, 2022Updated 3 years ago
cisagov / CSAF
View on GitHub
CISA CSAF Security Advisories
☆96Updated this week
act-project / TAC
View on GitHub
Automating Compliance Tooling Project
☆22Jan 28, 2022Updated 4 years ago
CycloneDX / specification
View on GitHub
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
☆485Updated this week
CycloneDX / license-scanner
View on GitHub
Utility that provides an API and CLI to identify licenses and legal terms
☆52Jul 11, 2025Updated 7 months ago
oasis-open / csaf-documentation
View on GitHub
OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee,…
☆21Feb 13, 2026Updated 2 weeks ago
openvex / spec
View on GitHub
OpenVEX Specification
☆168Jan 16, 2026Updated last month
CERTCC / SSVC
View on GitHub
Stakeholder-Specific Vulnerability Categorization
☆175Updated this week
CycloneDX / transparency-exchange-api
View on GitHub
A standard API specification for exchanging supply chain artifacts and intelligence
☆100Feb 20, 2026Updated last week
nyph-infosec / daggerboard
View on GitHub
☆102Sep 27, 2024Updated last year
ossf / wg-vulnerability-disclosures
View on GitHub
The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
☆213Feb 4, 2026Updated last month
CiscoPSIRT / openVulnQuery
View on GitHub
A Python-based client for the Cisco openVuln API
☆38Nov 9, 2025Updated 3 months ago
scanoss / purl2cpe
View on GitHub
PURL to CPE Relationship mapping project.
☆111Updated this week
interlynk-io / sbomqs
View on GitHub
sbomqs: The Comprehensive SBOM Quality & Compliance Tool
☆269Updated this week
CERTCC / SBOM
View on GitHub
Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
☆66Apr 8, 2024Updated last year
spdx / spdx-examples
View on GitHub
Examples of SPDX files for software combinations
☆143Nov 15, 2025Updated 3 months ago
spdx / spdx-3-model
View on GitHub
The model for the information captured in SPDX version 3 standard.
☆98Updated this week
in-toto / kubectl-in-toto
View on GitHub
☆11Apr 25, 2019Updated 6 years ago
usnistgov / swid-tools
View on GitHub
☆15Feb 24, 2026Updated last week
OLSV-oss / OSSLicenseSimpleViewer
View on GitHub
OSS License Simple Viewer is a simple Excel-based tool as OSS license reference for engineers.
☆14Nov 20, 2020Updated 5 years ago
vulnerability-lookup / PyVulnerabilityLookup
View on GitHub
Python client and module for Vulnerability-Lookup.
☆14Dec 9, 2025Updated 2 months ago
protobom / sbom-convert
View on GitHub
Example CLI project to demo API architecture and protobom library
☆26Updated this week
ossf / osv-schema
View on GitHub
Open Source Vulnerability schema.
☆237Updated this week
spdx / ntia-conformance-checker
View on GitHub
Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.
☆81Feb 25, 2026Updated last week
package-url / purl-spec
View on GitHub
A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
☆980Updated this week
ossf / sbom-everywhere
View on GitHub
Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
☆110Updated this week
microsoft / scim
View on GitHub
Supply Chain Integrity Model
☆106Jun 12, 2023Updated 2 years ago
FIRSTdotorg / epss
View on GitHub
Exploit Prediction Scoring System (EPSS)
☆31Jun 1, 2022Updated 3 years ago
FIRSTdotorg / Vuln4Cast
View on GitHub
A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.
☆46Oct 1, 2025Updated 5 months ago
GEANT / TRANSITS
View on GitHub
Home for TRANSITS materials
☆25Jul 24, 2024Updated last year
kaie / sphere-detection
View on GitHub
Various modules to implement the DetecTor design from http://detector.kuix.de
☆52Oct 5, 2016Updated 9 years ago
caschnee / misp-use-cases
View on GitHub
☆14May 30, 2018Updated 7 years ago
cyware-labs / cytaxii2
View on GitHub
☆16May 28, 2025Updated 9 months ago