Alternatives and similar repositories for taf

Users that are interested in taf are comparing it to the libraries listed below

• pombredanne / gpl-history
  ☆19Updated last year
• secure-systems-lab / securesystemslib
  Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
  ☆52Updated last week
• orcwg / cra-hub
  Everything you ever wanted to know about the CRA and its implementation
  ☆141Updated this week
• chaoss / wg-risk
  Risk Working Group Repository
  ☆27Updated 8 months ago
• google / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆139Updated 2 years ago
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆228Updated 5 months ago
• twiss / source-code-transparency
  Source Code Transparency
  ☆11Updated 2 years ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆70Updated 2 months ago
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆80Updated 2 weeks ago
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆188Updated this week
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆95Updated this week
• theupdateframework / tuf-on-ci
  A TUF repository and signing tool
  ☆42Updated this week
• aboutcode-org / purldb
  Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…
  ☆54Updated last week
• ossf / security-insights
  Machine-readable specification for the attestation of security-relevant data.
  ☆67Updated 2 months ago
• spdx / spdx-spec
  The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
  ☆346Updated last week
• clearlydefined / clearlydefined
  Doc, wiki and organizational content for ClearlyDefined
  ☆105Updated last week
• vinland-technology / flict
  free and open source software license compatibility tool.
  ☆50Updated 8 months ago
• ossf / wg-securing-software-repos
  OpenSSF Working Group on Securing Software Repositories
  ☆123Updated 3 weeks ago
• aboutcode-org / license-expression
  Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …
  ☆71Updated 4 months ago
• jelmer / janitor
  Platform for making incremental changes to code in VCSes
  ☆13Updated 2 weeks ago
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆299Updated this week
• joholl / tpmstream
  A tool to help you understand TPM commands and responses.
  ☆47Updated last year
• tommilligan / pyqubes
  QubesOS dom0 automation in Python
  ☆12Updated 8 years ago
• psf / psf-tuf-runbook
  A runbook for the PSF, for TUF key setup and initial signing operations to bootstrap signing for PyPI.
  ☆16Updated 3 years ago
• ossf / alpha-omega
  Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
  ☆110Updated last week
• ossf / tac
  Technical Advisory Council
  ☆133Updated 3 weeks ago
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆62Updated this week
• Open-Source-Compliance / package-analysis
  This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …
  ☆52Updated last week
• certlint / certlint
  X.509 certificate linter
  ☆36Updated last month
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆79Updated 2 weeks ago