Alternatives and similar repositories for cheque:

Users that are interested in cheque are comparing it to the libraries listed below

• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• sonatype-nexus-community / ahab
  ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
  ☆68Updated 9 months ago
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆125Updated last week
• scanoss / engine
  SCANOSS Open Source Inventory Engine
  ☆35Updated this week
• bgnetworks / meta-dependencytrack
  A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.
  ☆19Updated 7 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• scanoss / sbom-workbench
  The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.
  ☆47Updated last week
• usnistgov / swid-tools
  ☆13Updated 3 months ago
• CycloneDX / cyclonedx-web-tool
  A web based tool for working with CycloneDX BOMs
  ☆33Updated 5 months ago
• Festo-se / cyclonedx-editor-validator
  Tool for creating, modifying and validating CycloneDX SBOMs.
  ☆22Updated this week
• SELinuxProject / selint
  Static code analysis of refpolicy style SELinux policy
  ☆41Updated last week
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆43Updated 7 months ago
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆94Updated this week
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆29Updated last year
• TimesysGit / meta-timesys
  Vulnerability management tool that provides Yocto SBOM generation and CVE Analysis of target images.
  ☆36Updated 6 months ago
• interlynk-io / sbomex
  Find & pull public SBOMs
  ☆16Updated 4 months ago
• spdx / spdx-to-osv
  Produce an Open Source Vulnerability JSON file based on information in an SPDX document
  ☆62Updated 7 months ago
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆73Updated this week
• CycloneDX / cyclonedx-linux-generator
  Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions
  ☆41Updated 8 months ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆113Updated 3 months ago
• interlynk-io / sbomasm
  SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.
  ☆61Updated 2 weeks ago
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆57Updated 9 months ago
• antitree / syscall2seccomp
  Build custom Docker seccomp profiles for containers by finding syscalls it uses.
  ☆89Updated 4 years ago
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated last year
• ptdropper / CVE-Scanner-for-your-SW-BOM
  CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
  ☆17Updated 4 years ago
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆76Updated last month
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 10 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆141Updated 10 months ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆98Updated 2 months ago
• in-toto / specification
  Specification and other related documents.
  ☆43Updated this week