sony / esstraLinks
A software suite for enhancing software supply chain transparency
☆19Updated this week
Alternatives and similar repositories for esstra
Users that are interested in esstra are comparing it to the libraries listed below
Sorting:
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆24Updated last month
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆32Updated 10 months ago
- OSS License Open Data☆12Updated 6 years ago
- Service to scan licenses from source code☆12Updated 2 years ago
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆33Updated 2 months ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Updated 5 years ago
- Project providing insights on the metaeffekt license database.☆11Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆100Updated 3 weeks ago
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Updated 2 months ago
- Publications done by Double Open.☆16Updated 5 years ago
- Report on quality of SBOM contents☆19Updated 8 months ago
- A rest client using shell scripts for the integration of FOSSology into a CI system☆14Updated 7 months ago
- Automating Compliance Tooling Project☆21Updated 3 years ago
- sbomasm: The Complete SBOM Management Toolkit☆77Updated last week
- SPDX Merge tool☆47Updated 4 months ago
- CaPyCLI - Python scripts for software license compliance automation with SW360☆19Updated 3 weeks ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆69Updated last month
- SBOM Explorer - Discover and pull public SBOMs☆20Updated 3 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Updated last year
- Example CLI project to demo API architecture and protobom library☆22Updated last week
- Umbrella Repository Service for TUF☆54Updated this week
- a mostly correct pip requirements parsing library☆21Updated last year
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆22Updated 7 months ago
- Platform for making incremental changes to code in VCSes☆12Updated this week
- A tool that takes two or more micro SBOMs and composes them into one distributable SBOM☆23Updated 2 years ago
- OpenVEX Specification☆156Updated 3 months ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆66Updated this week
- Software Bill-of-Materials documents for Python packages☆41Updated 6 months ago
- OSADL license compatibility matrix as a CSV☆16Updated 8 months ago