scanoss / engine
SCANOSS Open Source Inventory Engine
☆36Updated last week
Related projects: ⓘ
- SCANOSS Mining tool☆23Updated 2 months ago
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆46Updated last week
- The SCANOSS python package providing a simple, easy to consume library for interacting with SCANOSS APIs/Engine.☆25Updated this week
- ☆25Updated this week
- PURL to CPE Relationship mapping project.☆69Updated this week
- Automate open source license compliance and ensure software supply chain integrity☆21Updated 2 weeks ago
- The model for the information captured in SPDX version 3 standard.☆68Updated last week
- A place to systematically store software bill of materials (SBOM) documents.☆42Updated last year
- Utility that converts SBOM documents from CycloneDX to SPDX☆29Updated 8 months ago
- OSS License Open Data☆12Updated 5 years ago
- Create SPDX documents automatically with CMake build info☆24Updated 3 years ago
- A web based tool for working with CycloneDX BOMs☆29Updated last month
- A light-weight app to audit and inventory large codebases for open source license compliance.☆60Updated this week
- Audit C/C++ projects (make, cmake, command line, etc.)☆23Updated 2 years ago
- SPDX 2.0 document creation and storage☆15Updated last year
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆60Updated 3 months ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆69Updated this week
- Service to scan licenses from source code☆12Updated last year
- Format agnostic SBOM tooling☆63Updated this week
- Automating Compliance Tooling Project☆20Updated 2 years ago
- Check SPDX SBOM for NTIA minimum elements☆52Updated last week
- Python classes for the SARIF object model☆39Updated 5 months ago
- SARIF Microsoft Visual Studio Code extension☆110Updated this week
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆57Updated 5 months ago
- OpenSSF Endusers Working Group☆28Updated 5 months ago
- A collection of scripts for license compliance scanning, mostly experimental☆21Updated 2 months ago
- Publications done by Double Open.☆16Updated 4 years ago
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆82Updated last month
- SPDX Merge tool☆39Updated last week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆69Updated this week