scanoss / engineLinks
SCANOSS Open Source Inventory Engine
☆38Updated last month
Alternatives and similar repositories for engine
Users that are interested in engine are comparing it to the libraries listed below
Sorting:
- The SCANOSS python package providing a simple, easy to consume library for interacting with SCANOSS APIs/Engine.☆32Updated this week
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆56Updated last week
- SCANOSS Mining tool☆23Updated 8 months ago
- SPDX 2.0 document creation and storage☆16Updated 2 years ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆77Updated 2 weeks ago
- The model for the information captured in SPDX version 3 standard.☆91Updated this week
- Source for the website providing online SPDX tools☆67Updated last month
- PURL to CPE Relationship mapping project.☆91Updated this week
- SARIF Microsoft Visual Studio Code extension☆118Updated 2 weeks ago
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated 2 years ago
- OSS License Open Data☆12Updated 6 years ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆32Updated 9 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Updated last year
- Audit C/C++ projects (make, cmake, command line, etc.)☆27Updated 3 years ago
- A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.☆21Updated last year
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 4 years ago
- Examples of SPDX files for software combinations☆133Updated last month
- A light-weight app to audit and inventory large codebases for open source license compliance.☆66Updated this week
- Python classes for the SARIF object model☆43Updated last year
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆97Updated 2 weeks ago
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆64Updated last year
- Service to scan licenses from source code☆12Updated last year
- Publications done by Double Open.☆16Updated 5 years ago
- A collection of scripts for license compliance scanning, mostly experimental☆21Updated last month
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆37Updated 2 weeks ago
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆186Updated 2 weeks ago
- A free and open database of all the licenses, in particular all the open source software licenses☆50Updated last week
- A Python library to parse, validate and create SPDX documents.☆225Updated 3 weeks ago
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆64Updated last year
- License Identifier☆14Updated 4 years ago