Utility that converts SBOM documents from CycloneDX to SPDX
☆33Jan 19, 2024Updated 2 years ago
Alternatives and similar repositories for cdx2spdx
Users that are interested in cdx2spdx are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆16Mar 17, 2026Updated last week
- SBOM Explorer - Discover and pull public SBOMs☆20May 23, 2025Updated 10 months ago
- SPDX Command Line Tools using the Spdx-Java-Library☆90Mar 13, 2026Updated last week
- This is the GitHub repo of the OpenChain SBOM Study Group☆12Feb 18, 2026Updated last month
- A place to systematically store software bill of materials (SBOM) documents.☆50Jun 1, 2023Updated 2 years ago
- PURL to CPE Relationship mapping project.☆111Mar 17, 2026Updated last week
- A Python library to parse, validate and create SPDX documents.☆241Mar 13, 2026Updated last week
- Examples of SPDX files for software combinations☆143Nov 15, 2025Updated 4 months ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆84Mar 17, 2026Updated last week
- Vulnerability Management with SBOM☆20Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆112Feb 28, 2026Updated 3 weeks ago
- Java library which implements the Java object model for SPDX and provides useful helper functions☆66Mar 12, 2026Updated last week
- The model for the information captured in SPDX version 3 standard.☆99Mar 14, 2026Updated last week
- It is almost the best 3B model in the current open source industry, surpassing Dolly v2-3b, open lama-3b, and even outperforming the Eleu…☆15Jul 24, 2023Updated 2 years ago
- buildx bake demo @ Docker Community All-Hands #2☆14Jun 22, 2022Updated 3 years ago
- OSS License Simple Viewer is a simple Excel-based tool as OSS license reference for engineers.☆14Nov 20, 2020Updated 5 years ago
- sbomasm: The Complete SBOM Management Toolkit☆106Mar 16, 2026Updated last week
- SPDX SBOM Landscape☆16Aug 28, 2023Updated 2 years ago
- This is the OpenChain Telco Work Group☆20Updated this week
- Privateer is a plugin-based framework for security & compliance evaluations.☆18Mar 17, 2026Updated last week
- The Keep It Simple Software Bill of Material☆11Jan 31, 2022Updated 4 years ago
- Helm Chart for deploying GUAC☆18Mar 9, 2026Updated 2 weeks ago
- Cause sometimes you just need to dance ...☆10Oct 21, 2019Updated 6 years ago
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…☆11Updated this week
- Source for the website providing online SPDX tools☆72Dec 28, 2025Updated 2 months ago
- OpenVEX Specification☆171Jan 16, 2026Updated 2 months ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆470Feb 10, 2026Updated last month
- ☆102Sep 27, 2024Updated last year
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆271Updated this week
- REUSE recommendations, tutorials, FAQ and specification☆18May 27, 2024Updated last year
- AlmaLinux OS SBOM data management utility.☆16Jan 20, 2026Updated 2 months ago
- Privateer plugin for scanning the security hygiene of a GitHub repository.☆21Updated this week
- go-ima is a tool that checks if a file has been tampered with. It is useful in ensuring integrity in CI systems☆13Sep 28, 2023Updated 2 years ago
- SPDX Merge tool☆51Mar 2, 2026Updated 3 weeks ago
- A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.☆22May 24, 2024Updated last year
- Linux agent used to submit realtime SBOMs and dependency usage information to EdgeBit☆15Jan 24, 2025Updated last year
- Utility that provides an API platform for validating, querying and managing BOM data☆130Jan 2, 2026Updated 2 months ago
- The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…☆18Dec 29, 2025Updated 2 months ago
- Support CI generation of SBOMs via golang tooling.☆424Jan 13, 2025Updated last year