philips-software / license-scanner
Service to scan licenses from source code
☆12Updated last year
Alternatives and similar repositories for license-scanner:
Users that are interested in license-scanner are comparing it to the libraries listed below
- Low-effort reachability analysis for third-party code vulnerabilities.☆20Updated last year
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆9Updated 4 years ago
- SBOM Grep - search through SBOMs☆22Updated last month
- A place to systematically store software bill of materials (SBOM) documents.☆44Updated last year
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Updated this week
- Automating Compliance Tooling Project☆21Updated 3 years ago
- OSS License Open Data☆12Updated 5 years ago
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- GitHub Action to get a license overview in SPDX format☆14Updated 3 years ago
- A collection of scripts for license compliance scanning, mostly experimental☆22Updated 2 months ago
- Publications done by Double Open.☆16Updated 4 years ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆66Updated this week
- Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners☆11Updated 3 weeks ago
- Automate open source license compliance and ensure software supply chain integrity☆30Updated last week
- container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…☆37Updated 2 weeks ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆20Updated 2 months ago
- apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information☆22Updated 3 years ago
- Find & pull public SBOMs☆17Updated 7 months ago
- ☆19Updated 4 months ago
- OSADL license compatibility matrix as a CSV☆15Updated 3 months ago
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 2 months ago
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆50Updated this week
- SPDX Merge tool☆41Updated 3 weeks ago
- Project providing insights on the metaeffekt license database.☆12Updated last month
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆34Updated 5 months ago
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆21Updated this week
- CVE database☆22Updated 4 years ago
- A library for parsing security advisories☆13Updated 6 months ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆61Updated this week