Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.
☆86Apr 29, 2026Updated last week
Alternatives and similar repositories for ntia-conformance-checker
Users that are interested in ntia-conformance-checker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Generate a score for your sbom to understand if it will actually be useful.☆242Aug 13, 2024Updated last year
- A place to systematically store software bill of materials (SBOM) documents.☆50Jun 1, 2023Updated 2 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆136Jan 2, 2026Updated 4 months ago
- A Python library to parse, validate and create SPDX documents.☆243Mar 13, 2026Updated last month
- Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team☆33Feb 2, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The model for the information captured in SPDX version 3 standard.☆98Apr 25, 2026Updated 2 weeks ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆113Feb 28, 2026Updated 2 months ago
- Security advisory data for Wolfi☆19Jan 7, 2026Updated 4 months ago
- This is the OpenChain Telco Work Group☆20Apr 2, 2026Updated last month
- Format agnostic SBOM tooling☆137Nov 20, 2025Updated 5 months ago
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆289Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Jan 19, 2024Updated 2 years ago
- sbomasm: The Complete SBOM Management Toolkit☆114May 1, 2026Updated last week
- Documents and tools powering the Wolfi OS community☆24Apr 22, 2026Updated 2 weeks ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.☆362May 1, 2026Updated last week
- Vulnerability Management with SBOM☆20Apr 28, 2026Updated last week
- Example apps demonstrating Chainguard platform integrations☆15Updated this week
- ☆154Updated this week
- OpenVEX Specification☆175Jan 16, 2026Updated 3 months ago
- A tool to create, transform and attest VEX metadata☆188Updated this week
- Machine-readable specification for the attestation of security-relevant data.☆74Apr 17, 2026Updated 3 weeks ago
- REUSE recommendations, tutorials, FAQ and specification☆18May 27, 2024Updated last year
- Project providing insights on the metaeffekt license database.☆12Apr 26, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A light-weight app to audit and inventory large codebases for open source license compliance.☆74May 2, 2026Updated last week
- Collection of Go packages to work with SPDX files☆162Feb 23, 2026Updated 2 months ago
- Python library to enable scriptable control of a FOSSology server☆11May 22, 2023Updated 2 years ago
- SPDX Tools☆144Oct 7, 2025Updated 7 months ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆22May 4, 2023Updated 3 years ago
- ☆81Dec 10, 2025Updated 4 months ago
- List of SBOM Generation Tools☆32Mar 7, 2025Updated last year
- OSS License Open Data☆12Jun 28, 2019Updated 6 years ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆107Mar 25, 2026Updated last month
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Black Duck I/O☆13Mar 28, 2025Updated last year
- in-toto Attestation Framework☆334Apr 28, 2026Updated last week
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆230May 26, 2025Updated 11 months ago
- This repository contains the reference material related to the OpenChain Project☆111Apr 16, 2026Updated 3 weeks ago
- A utility to generate SPDX-compliant Bill of Materials manifests☆454Apr 30, 2026Updated last week
- material designed to help organizations meet the training and process requirements of the OpenChain Specification☆30Aug 23, 2022Updated 3 years ago
- Utility that provides an API and CLI to identify licenses and legal terms☆54Jul 11, 2025Updated 9 months ago