spdx / meetingsLinks
This repository stores meetings minutes for the SPDX project
☆33Updated this week
Alternatives and similar repositories for meetings
Users that are interested in meetings are comparing it to the libraries listed below
Sorting:
- The model for the information captured in SPDX version 3 standard.☆91Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆96Updated last week
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆32Updated 9 months ago
- A CLI tool for creating secure by design/default source repos.☆26Updated last year
- Machine-readable specification for the attestation of security-relevant data.☆60Updated 2 weeks ago
- A specification for signing methods and formats used by Secure Systems Lab projects.☆84Updated 10 months ago
- The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.☆335Updated this week
- Examples of SPDX files for software combinations☆133Updated last month
- Technical Advisory Council☆128Updated this week
- Check SPDX SBOM for NTIA minimum elements☆66Updated this week
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Updated 2 years ago
- in-toto Attestation Framework☆284Updated last month
- Search Rekor for entries☆34Updated this week
- ☆22Updated 8 months ago
- OpenSSF Working Group on Securing Software Repositories☆111Updated 2 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Updated last year
- Automating Compliance Tooling Project☆21Updated 3 years ago
- Format agnostic SBOM tooling☆112Updated this week
- ☆62Updated last year
- Sigstore's Protocol Buffer specifications☆33Updated this week
- SLSA Proposals☆10Updated last year
- OpenVEX Specification☆155Updated 2 months ago
- Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.☆107Updated this week
- SBOM Edit - Conditional edits and merging of SBOMs☆74Updated this week
- SPDX Merge tool☆45Updated 3 months ago
- Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …☆185Updated last year
- ☆100Updated 10 months ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 2 months ago
- General sigstore community repo☆40Updated this week
- TUF repository for Sigstore trust root☆107Updated this week