ossf/osv-schema external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ossf/osv-schema

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ossf/osv-schema)

Close

ossf / osv-schemaView on GitHubMore

• External links
• Readme badge

Open Source Vulnerability schema.

☆246Apr 24, 2026Updated last week

Alternatives and similar repositories for osv-schema

Users that are interested in osv-schema are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• google / osv.dev

  View on GitHub
  Open source vulnerability DB and triage service.
  ☆2,635Updated this week
• package-url / purl-spec

  View on GitHub
  A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
  ☆1,020Apr 8, 2026Updated 3 weeks ago
• scanoss / purl2cpe

  View on GitHub
  PURL to CPE Relationship mapping project.
  ☆115Updated this week
• ossf / wg-vulnerability-disclosures

  View on GitHub
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆217Feb 4, 2026Updated 2 months ago
• ossf / tac

  View on GitHub
  Technical Advisory Council
  ☆141Apr 14, 2026Updated 2 weeks ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• openvex / spec

  View on GitHub
  OpenVEX Specification
  ☆173Jan 16, 2026Updated 3 months ago
• CloudSecurityAlliance / gsd-project

  View on GitHub
  Global Security Database Project
  ☆28Mar 4, 2023Updated 3 years ago
• CloudSecurityAlliance / gsd-database

  View on GitHub
  Global Security Database
  ☆319Apr 29, 2024Updated 2 years ago
• anchore / nvd-data-overrides

  View on GitHub
  ☆50Apr 24, 2026Updated last week
• google / deps.dev

  View on GitHub
  Resources for the deps.dev API
  ☆400Apr 22, 2026Updated last week
• anchore / vulnerability-data-tools

  View on GitHub
  ☆18Apr 24, 2026Updated last week
• CVEProject / cve-schema

  View on GitHub
  This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published …
  ☆404Jan 30, 2026Updated 3 months ago
• CloudSecurityAlliance / gsd-tools

  View on GitHub
  Global Security Database Tools
  ☆43Dec 13, 2023Updated 2 years ago
• spdx / spdx-to-osv

  View on GitHub
  Produce an Open Source Vulnerability JSON file based on information in an SPDX document
  ☆64May 27, 2024Updated last year
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• devops-kung-fu / bomber

  View on GitHub
  Scans Software Bill of Materials (SBOMs) for security vulnerabilities
  ☆609Feb 10, 2026Updated 2 months ago
• CycloneDX / cyclonedx-property-taxonomy

  View on GitHub
  A taxonomy of all official CycloneDX property namespaces and names
  ☆21Mar 2, 2026Updated 2 months ago
• CycloneDX / bom-examples

  View on GitHub
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆223Oct 21, 2025Updated 6 months ago
• CycloneDX / specification

  View on GitHub
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆502Apr 25, 2026Updated last week
• google / oss-fuzz-vulns

  View on GitHub
  OSS-Fuzz vulnerabilities for OSV.
  ☆177Updated this week
• ossf / malicious-packages

  View on GitHub
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆497Updated this week
• ossf / sbom-everywhere

  View on GitHub
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆113Feb 28, 2026Updated 2 months ago
• SBOMit / specification

  View on GitHub
  ☆81Dec 10, 2025Updated 4 months ago
• github / advisory-database

  View on GitHub
  Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
  ☆2,245Updated this week
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• ossf / security-insights

  View on GitHub
  Machine-readable specification for the attestation of security-relevant data.
  ☆75Apr 17, 2026Updated 2 weeks ago
• CycloneDX / transparency-exchange-api

  View on GitHub
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆106Mar 25, 2026Updated last month
• CVEProject / automation-working-group

  View on GitHub
  CVE Automation Working Group
  ☆184Apr 22, 2026Updated last week
• ossf / security-reviews

  View on GitHub
  A community collection of security reviews of open source software components.
  ☆99Feb 29, 2024Updated 2 years ago
• sigstore / community

  View on GitHub
  General sigstore community repo
  ☆45Apr 23, 2026Updated last week
• opensbom-generator / spdx-sbom-generator

  View on GitHub
  Support CI generation of SBOMs via golang tooling.
  ☆425Jan 13, 2025Updated last year
• sigstore / model-transparency

  View on GitHub
  Supply chain security for ML
  ☆230Apr 21, 2026Updated last week
• ossf / Project-Security-Metrics

  View on GitHub
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Mar 13, 2024Updated 2 years ago
• guacsec / guac

  View on GitHub
  GUAC aggregates software security metadata into a high fidelity graph database.
  ☆1,481Updated this week
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• oasis-tcs / csaf

  View on GitHub
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆214Updated this week
• ossf / alpha-omega

  View on GitHub
  Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
  ☆125Apr 10, 2026Updated 3 weeks ago
• ossf / wg-security-tooling

  View on GitHub
  OpenSSF Security Tooling Working Group
  ☆322Jul 6, 2025Updated 9 months ago
• kusaridev / spector

  View on GitHub
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆33Apr 22, 2025Updated last year
• ossf / package-analysis

  View on GitHub
  Open Source Package Analysis
  ☆876Feb 27, 2026Updated 2 months ago
• anchore / vunnel

  View on GitHub
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆115Apr 23, 2026Updated last week
• CVEProject / cve-website

  View on GitHub
  The CVE.ORG website
  ☆109Apr 21, 2026Updated last week