philips-software / license-scanner
Service to scan licenses from source code
☆12Updated last year
Alternatives and similar repositories for license-scanner:
Users that are interested in license-scanner are comparing it to the libraries listed below
- Low-effort reachability analysis for third-party code vulnerabilities.☆20Updated last year
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated last year
- SBOM Grep - search through SBOMs☆25Updated 2 months ago
- OSS License Open Data☆12Updated 5 years ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- ☆19Updated 5 months ago
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 2 months ago
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated last month
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆9Updated 4 years ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆21Updated 3 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆28Updated last year
- apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information☆22Updated 3 years ago
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- Automating Compliance Tooling Project☆21Updated 3 years ago
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Updated 3 weeks ago
- A library for parsing security advisories☆13Updated 7 months ago
- ☆13Updated this week
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆51Updated this week
- A light-weight app to audit and inventory large codebases for open source license compliance.☆65Updated this week
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆69Updated this week
- Automate open source license compliance and ensure software supply chain integrity☆31Updated this week
- Given a buildinfo file from a Debian package, generate instructions for attempting to reproduce the binary packages built from the associ…☆17Updated 2 years ago
- Machine-readable specification for the attestation of security-relevant data.☆59Updated last week
- A collection of scripts for license compliance scanning, mostly experimental☆22Updated last week
- CVE database☆22Updated 4 years ago
- Publications done by Double Open.☆16Updated 4 years ago
- The International FOSS Law Book, v.2 and onwards☆13Updated 3 years ago
- Project providing insights on the metaeffekt license database.☆12Updated last week
- ☆62Updated 9 months ago
- Find & pull public SBOMs☆18Updated 8 months ago