spdx / spdx-maven-plugin

Related projects: ⓘ

• spdx / tools-java
  SPDX Command Line Tools using the Spdx-Java-Library
  ☆59Updated last week
• spdx / Spdx-Java-Library
  Java library which implements the Java object model for SPDX and provides useful helper functions
  ☆35Updated last week
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆80Updated this week
• eclipse / jbom
  ☆110Updated 3 months ago
• sigstore / sigstore-java
  java clients for sigstore
  ☆37Updated last week
• jqassistant-tooling / sonar-jqassistant-plugin
  The SonarQube plugin for jQAssistant
  ☆12Updated this week
• jvm-repo-rebuild / reproducible-central
  Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository
  ☆99Updated this week
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆22Updated 3 months ago
• eclipse-dash / dash-licenses
  Extract license information from content.
  ☆47Updated last week
• sigstore / sigstore-maven-plugin
  sigstore maven plugin
  ☆18Updated last month
• quarkiverse / quarkus-zanzibar
  Zanzibar style fine grained authorization
  ☆17Updated this week
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆29Updated 8 months ago
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆61Updated this week
• paketo-buildpacks / maven
  A Cloud Native Buildpack that builds Maven-based applications from source
  ☆30Updated 2 weeks ago
• martinspielmann / haveibeenpwned4j
  The ultimate Java library for Troy Hunt's ';-- Have I Been Pwned (v3).
  ☆13Updated last year
• georgberky / dependency-update-maven-plugin
  A Maven plugin that creates merge requests for dependency updates.
  ☆26Updated 5 months ago
• philips-software / spdx-action
  GitHub Action to get a license overview in SPDX format
  ☆14Updated 2 years ago
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆59Updated this week
• andifalk / bookmark-service
  A secure spring boot based java service providing an API to store and retrieve browser bookmarks
  ☆18Updated 3 months ago
• opossum-tool / OpossumUI
  A light-weight app to audit and inventory large codebases for open source license compliance.
  ☆60Updated this week
• redhat-developer / intellij-dependency-analytics
  IntelliJ Dependency Analytics
  ☆24Updated 2 weeks ago
• CycloneDX / sbom-comparator
  Lockheed Martin developed utility to compare two CycloneDX SBOMs
  ☆18Updated 2 years ago
• aboutcode-org / container-inspector
  container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relat…
  ☆34Updated last month
• pmckeown / dependency-track-maven-plugin
  Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …
  ☆61Updated 8 months ago
• societe-generale / sonar-openapi
  ☆29Updated this week
• CACI-IIG / keycloak-hibp-password-policy
  HaveIBeenPwned Password Policy for Keycloak PoC
  ☆10Updated 5 years ago
• SAP / fosstars-rating-core
  A framework for defining ratings for open source projects. In particular, the framework offers a security rating for open source projects…
  ☆60Updated last week
• sparsick / testcontainers-git
  This project contains a Testcontainers implementation for a plain git server based on the Docker image rockstorm/git-server
  ☆30Updated this week
• sonatype / package-url-java
  Java Package URL implementation
  ☆12Updated last year
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆287Updated last week