sbomtools / apt2sbom
apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information
☆22Updated 2 years ago
Related projects: ⓘ
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Updated last year
- Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format☆19Updated last month
- ☆98Updated last month
- OPENSSF SECURITY INSIGHTS: Repository for development of the draft standard, where requests for modification should be made via Github Is…☆49Updated 2 weeks ago
- A place to systematically store software bill of materials (SBOM) documents.☆42Updated last year
- SPDX Merge tool☆39Updated last week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- Low-effort reachability analysis for third-party code vulnerabilities.☆19Updated last year
- Report missing advisories and corrections on OSS Index☆17Updated last year
- Service to scan licenses from source code☆12Updated last year
- ☆45Updated this week
- Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions☆39Updated 4 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆69Updated this week
- Automating Compliance Tooling Project☆20Updated 2 years ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆19Updated 11 months ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆69Updated this week
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆142Updated 3 weeks ago
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆53Updated 2 weeks ago
- Global Security Database Tools☆41Updated 9 months ago
- Sharing software supply chain security open source projects☆38Updated last year
- Tools to download or provide CSAF (Common Security Advisory Framework) documents.☆38Updated this week
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆177Updated last month
- Library to ingest and generate SBOMs☆16Updated 3 weeks ago
- Format agnostic SBOM tooling☆63Updated this week
- Utility that provides an API platform for validating, querying and managing BOM data☆88Updated last month
- Feed parsing for language package manager updates☆71Updated this week
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated 6 months ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆20Updated last year
- This project aims to standardize the representation and management of EOL and EOS product information across the industry.☆25Updated 6 months ago
- Utility that provides an API and CLI to identify licenses and legal terms☆43Updated 3 months ago