scanoss / wfpLinks
Winnowing fingerprint extractor
☆17Updated 10 months ago
Alternatives and similar repositories for wfp
Users that are interested in wfp are comparing it to the libraries listed below
Sorting:
- Reliable project licenses detector.☆135Updated last year
- PURL to CPE Relationship mapping project.☆91Updated this week
- Go library for SARIF - Static Analysis Results Interchange Format☆78Updated 2 weeks ago
- SCANOSS Mining tool☆23Updated 6 months ago
- Open Source Vulnerability schema.☆199Updated last week
- A fork of Bandit tool with patterns to identifying malicious python code.☆26Updated 2 years ago
- A free and open database of all the licenses, in particular all the open source software licenses☆47Updated this week
- Dependency Parser for Multiple Programming Languages☆148Updated last year
- Creates CycloneDX Software Bill of Materials (SBOM) from Go modules☆156Updated this week
- go library for processing container images and simulating a squash filesystem☆99Updated last week
- Utility that converts SBOM documents from CycloneDX to SPDX☆29Updated last year
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆183Updated last week
- Go implementation of the package url spec☆61Updated 3 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆96Updated 2 weeks ago
- 🚰 Static taint analysis for Go programs.☆64Updated last month
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated 2 years ago
- The SCANOSS python package providing a simple, easy to consume library for interacting with SCANOSS APIs/Engine.☆32Updated this week
- A library for extracting and analyzing definition/reference graphs from your codebase. Powered by tree-sitter and LSIF/SCIP.☆49Updated 6 months ago
- Feed parsing for language package manager updates☆80Updated 6 months ago
- licensechecker (lc) a command line application which scans directories and identifies what software license things are under producing re…☆132Updated last month
- Implements a subset of PKCS #7 / Cryptographic Message Syntax (CMS, RFC 2315, RFC 5652)☆19Updated 3 weeks ago
- The licensecheck package classifies license files and heuristically determines how well they correspond to known open source licenses.☆465Updated last year
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆64Updated last year
- Go library for building tile-based transparency logs (tlogs)☆68Updated last week
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆36Updated 7 months ago
- Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)☆88Updated this week
- Support CI generation of SBOMs via golang tooling.☆424Updated 4 months ago
- Python implementation of OWASP CycloneDX☆82Updated this week
- The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning☆11Updated 2 years ago
- A dataset of software supply chain compromises. Please help us maintain it!☆128Updated 2 years ago