openlawlibrary / tafLinks
The Archive Framework
☆21Updated last week
Alternatives and similar repositories for taf
Users that are interested in taf are comparing it to the libraries listed below
Sorting:
- ☆19Updated last year
- Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU☆52Updated last week
- Everything you ever wanted to know about the CRA and its implementation☆145Updated 3 weeks ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆85Updated last month
- A Python library to parse, validate and create SPDX documents.☆231Updated 5 months ago
- Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulner…☆57Updated last week
- OpenSSF Working Group on Securing Software Repositories☆125Updated last week
- Doc, wiki and organizational content for ClearlyDefined☆105Updated 3 weeks ago
- The model for the information captured in SPDX version 3 standard.☆97Updated 3 weeks ago
- The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.☆351Updated last week
- A Sigstore client written in Python☆305Updated last week
- Feed parsing for language package manager updates☆80Updated last year
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆71Updated 5 months ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆140Updated 2 years ago
- PURL to CPE Relationship mapping project.☆106Updated this week
- This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …☆53Updated this week
- A Python library and command line interface for CVE Services.☆71Updated 2 months ago
- Umbrella Repository Service for TUF☆57Updated 2 weeks ago
- Machine-readable specification for the attestation of security-relevant data.☆67Updated this week
- Risk Working Group Repository☆27Updated 8 months ago
- Functionality and DataModels of OWASP CycloneDX for Python☆98Updated last week
- Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.☆110Updated 2 weeks ago
- QubesOS dom0 automation in Python☆12Updated 8 years ago
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)☆38Updated last week
- REUSE recommendations, tutorials, FAQ and specification☆18Updated last year
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆79Updated last month
- Helping allocate resources to secure the critical open source projects we all depend on.☆379Updated 7 months ago
- Automatically assess and score software repositories for supply chain risk.☆114Updated last month
- Source Code Transparency☆11Updated 2 years ago
- A brief tutorial on how to use Software Package Data Exchange (SPDX)☆141Updated last year