Alternatives and similar repositories for codemodder-specs

Users that are interested in codemodder-specs are comparing it to the libraries listed below

• pixee / upload-tool-results-action
  A GitHub Action that allows Pixee to fix issues found by other code scanners
  ☆15Updated 5 months ago
• pixee / python-security
  Security toolkit for the Python community
  ☆15Updated 4 months ago
• pixee / codemodder-java
  a framework for building java codemods
  ☆41Updated this week
• pixee / pixee-cli
  Implementation of the Pixee CLI
  ☆31Updated last week
• pixee / java-security-toolkit
  A set of security APIs meant to help secure Java code
  ☆22Updated last week
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆93Updated last week
• eclipse-jbom / jbom
  ☆116Updated 2 months ago
• oracle / macaron
  Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …
  ☆158Updated this week
• DependencyTrack / hyades-apiserver
  Fork of the Dependency-Track API server. It includes various changes necessary to work with Hyades.
  ☆15Updated this week
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆230Updated 10 months ago
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆75Updated this week
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆176Updated 2 months ago
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆78Updated last week
• interlynk-io / sbomasm
  SBOM Edit - Conditional edits and merging of SBOMs
  ☆72Updated this week
• package-url / purl-spec
  A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
  ☆791Updated last week
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆309Updated last year
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆143Updated last week
• CycloneDX / cyclonedx-gradle-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
  ☆191Updated this week
• spdx / ntia-conformance-checker
  Check SPDX SBOM for NTIA minimum elements
  ☆64Updated last week
• interlynk-io / sbomqs
  SBOM Assess - Evaluate SBOM quality and compliance
  ☆215Updated last week
• sigstore / sigstore-java
  java clients for sigstore
  ☆57Updated last week
• advanced-security / maven-dependency-submission-action
  GitHub Action for submitting Maven dependencies
  ☆52Updated 2 weeks ago
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆85Updated last week
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆188Updated 3 weeks ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆402Updated last week
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆83Updated 2 weeks ago
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆91Updated this week
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆83Updated this week
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆93Updated 2 weeks ago
• gradle / github-dependency-graph-gradle-plugin
  Gradle Plugin for Extracting Dependency Information to send to GitHub
  ☆91Updated 3 weeks ago