sonatype-nexus-community / cheque

Related projects ⓘ

Alternatives and complementary repositories for cheque

• SELinuxProject / selint
  Static code analysis of refpolicy style SELinux policy
  ☆38Updated 3 weeks ago
• sonatype-nexus-community / ahab
  ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
  ☆68Updated 7 months ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated last year
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• anthonyharrison / lib4sbom
  Library to ingest and generate SBOMs
  ☆17Updated 3 weeks ago
• usnistgov / swid-tools
  ☆13Updated last month
• scanoss / engine
  SCANOSS Open Source Inventory Engine
  ☆35Updated 2 months ago
• CycloneDX / cyclonedx-linux-generator
  Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions
  ☆39Updated 6 months ago
• spdx / spdx-to-osv
  Produce an Open Source Vulnerability JSON file based on information in an SPDX document
  ☆60Updated 5 months ago
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆80Updated this week
• in-toto / specification
  Specification and other related documents.
  ☆40Updated 6 months ago
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆42Updated 5 months ago
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆29Updated 10 months ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆59Updated 3 weeks ago
• interlynk-io / sbomgr
  SBOM Grep - search through SBOMs
  ☆21Updated last month
• anthonyharrison / sbomdiff
  This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
  ☆26Updated 3 weeks ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 8 months ago
• bgnetworks / meta-dependencytrack
  A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.
  ☆19Updated 5 months ago
• spdx / ntia-conformance-checker
  Check SPDX SBOM for NTIA minimum elements
  ☆53Updated last week
• scanoss / sbom-workbench
  The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.
  ☆47Updated this week
• kannkyo / nvd-api
  NVD API 2.0 for python
  ☆12Updated last month
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆124Updated 2 weeks ago
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated last year
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆71Updated last week
• cybeats / sbomgen
  List of SBOM Generation Tools
  ☆20Updated last week
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆74Updated 8 months ago
• fabric8-analytics / cvedb
  CVE database
  ☆22Updated 4 years ago
• philips-software / SPDXMerge
  SPDX Merge tool
  ☆39Updated 2 months ago
• sbomtools / apt2sbom
  apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information
  ☆22Updated 2 years ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆95Updated this week