PURL to CPE Relationship mapping project.
☆111Feb 25, 2026Updated this week
Alternatives and similar repositories for purl2cpe
Users that are interested in purl2cpe are comparing it to the libraries listed below
Sorting:
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Jan 19, 2024Updated 2 years ago
- OSS License Simple Viewer is a simple Excel-based tool as OSS license reference for engineers.☆14Nov 20, 2020Updated 5 years ago
- OpenVEX Specification☆168Jan 16, 2026Updated last month
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆60Updated this week
- Automating Compliance Tooling Project☆22Jan 28, 2022Updated 4 years ago
- A taxonomy of all official CycloneDX property namespaces and names☆21Updated this week
- The SCANOSS python package providing a simple, easy to consume library for interacting with SCANOSS APIs/Engine.☆39Feb 24, 2026Updated last week
- CaPyCLI - Python scripts for software license compliance automation with SW360☆22Feb 12, 2026Updated 2 weeks ago
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆980Updated this week
- ☆49Updated this week
- Machine-readable specification for the attestation of security-relevant data.☆72Feb 24, 2026Updated last week
- Vuln Disclosure WG's new SIG☆11Jan 2, 2024Updated 2 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆136Feb 23, 2026Updated last week
- A standard API specification for exchanging supply chain artifacts and intelligence☆100Feb 20, 2026Updated last week
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆41Oct 29, 2024Updated last year
- ☆102Sep 27, 2024Updated last year
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆110Updated this week
- sbomasm: The Complete SBOM Management Toolkit☆105Updated this week
- Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions…☆42Updated this week
- Examples of SPDX files for software combinations☆143Nov 15, 2025Updated 3 months ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆88Nov 24, 2025Updated 3 months ago
- Open Source Vulnerability schema.☆235Feb 20, 2026Updated last week
- This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …☆53Feb 23, 2026Updated last week
- AlmaLinux OS SBOM data management utility.☆16Jan 20, 2026Updated last month
- The model for the information captured in SPDX version 3 standard.☆98Updated this week
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆66Apr 8, 2024Updated last year
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆647Feb 24, 2026Updated last week
- Build a local copy of CPE(Common Platform Enumeration)☆105Feb 23, 2026Updated last week
- A tool to create, transform and attest VEX metadata☆176Updated this week
- This repository stores meetings minutes for the SPDX project☆39Feb 17, 2026Updated 2 weeks ago
- Generate a score for your sbom to understand if it will actually be useful.☆238Aug 13, 2024Updated last year
- Utility that provides an API and CLI to identify licenses and legal terms☆52Jul 11, 2025Updated 7 months ago
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆218Oct 21, 2025Updated 4 months ago
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆568May 20, 2025Updated 9 months ago
- The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…☆18Dec 29, 2025Updated 2 months ago
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆210Updated this week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆485Updated this week
- Transform SBOM contents into a formatted document including markdown and PDF formats☆38Jan 26, 2026Updated last month