sonatype-nexus-community / cheque
Audit C/C++ projects (make, cmake, command line, etc.)
☆28Updated 3 years ago
Alternatives and similar repositories for cheque:
Users that are interested in cheque are comparing it to the libraries listed below
- Create SPDX documents automatically with CMake build info☆27Updated 3 years ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- A place to systematically store software bill of materials (SBOM) documents.☆44Updated last year
- ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.☆67Updated 11 months ago
- ☆13Updated 5 months ago
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆64Updated 10 months ago
- Examples of SPDX files for software combinations☆128Updated 2 months ago
- Library to ingest and generate SBOMs☆24Updated this week
- Static code analysis of refpolicy style SELinux policy☆42Updated last week
- Open Source Vulnerability schema.☆197Updated last week
- OSIDB — Open Security Issue Database☆29Updated this week
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆57Updated 11 months ago
- A specification including, problem statement, use cases, requirements, and architectural constituents for a Transparency Service in suppo…☆14Updated 2 years ago
- Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions☆45Updated 10 months ago
- SBOM Grep - search through SBOMs☆22Updated last month
- sbomify is an SBOM management platform.☆23Updated 3 weeks ago
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆50Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆28Updated last year
- Check SPDX SBOM for NTIA minimum elements☆60Updated this week
- Tool for creating, modifying and validating CycloneDX SBOMs.☆24Updated this week
- A community collection of security reviews of open source software components.☆93Updated last year
- Format agnostic SBOM tooling☆102Updated this week
- Utility that provides an API platform for validating, querying and managing BOM data☆104Updated 4 months ago
- Find & pull public SBOMs☆17Updated 7 months ago
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆66Updated this week
- CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.☆17Updated 4 years ago
- Vulnerability management tool that provides Yocto SBOM generation and CVE Analysis of target images.☆37Updated 9 months ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆74Updated last week
- A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.☆20Updated 10 months ago
- apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information☆22Updated 3 years ago