OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secondary artifacts like meeting minutes and productivity code
☆212Mar 16, 2026Updated last week
Alternatives and similar repositories for csaf
Users that are interested in csaf are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format☆41Updated this week
- Tools to download or provide CSAF (Common Security Advisory Framework) documents.☆58Dec 18, 2025Updated 3 months ago
- Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format☆30Mar 14, 2026Updated last week
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆218Oct 21, 2025Updated 5 months ago
- This project aims to standardize the representation and management of EOL and EOS product information across the industry.☆30Mar 4, 2024Updated 2 years ago
- OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee,…☆21Mar 13, 2026Updated last week
- A place to systematically store software bill of materials (SBOM) documents.☆50Jun 1, 2023Updated 2 years ago
- CISA CSAF Security Advisories☆99Mar 17, 2026Updated last week
- OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…☆24Jul 14, 2022Updated 3 years ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆103Mar 13, 2026Updated last week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆487Updated this week
- OpenVEX Specification☆171Jan 16, 2026Updated 2 months ago
- Utility that provides an API and CLI to identify licenses and legal terms☆52Jul 11, 2025Updated 8 months ago
- Automating Compliance Tooling Project☆22Jan 28, 2022Updated 4 years ago
- Stakeholder-Specific Vulnerability Categorization☆176Updated this week
- ☆16Updated this week
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆67Apr 8, 2024Updated last year
- PURL to CPE Relationship mapping project.☆112Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆112Feb 28, 2026Updated 3 weeks ago
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆998Updated this week
- ☆102Sep 27, 2024Updated last year
- Python client and module for Vulnerability-Lookup.☆14Dec 9, 2025Updated 3 months ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆84Mar 17, 2026Updated last week
- The model for the information captured in SPDX version 3 standard.☆99Mar 14, 2026Updated last week
- OSS License Simple Viewer is a simple Excel-based tool as OSS license reference for engineers.☆14Nov 20, 2020Updated 5 years ago
- The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.☆362Updated this week
- Limit USB devices plugged to a linux host☆12Feb 12, 2018Updated 8 years ago
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆214Feb 4, 2026Updated last month
- Examples of SPDX files for software combinations☆143Nov 15, 2025Updated 4 months ago
- Evangelizing the mission and work of the OpenSSF and building strong community outreach around end-users, open-source maintainers, and co…☆24May 2, 2024Updated last year
- ☆16Mar 17, 2026Updated last week
- Build, edit, validate, and export CycloneDX BOMs through an intuitive browser-based interface☆16Mar 13, 2026Updated last week
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆573May 20, 2025Updated 10 months ago
- Home for TRANSITS materials☆25Jul 24, 2024Updated last year
- Support CI generation of SBOMs via golang tooling.☆424Jan 13, 2025Updated last year
- Exploit Prediction Scoring System (EPSS)☆31Jun 1, 2022Updated 3 years ago
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 2 years ago
- ☆57Mar 2, 2026Updated 3 weeks ago
- Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team☆34Feb 2, 2026Updated last month