The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
☆362May 1, 2026Updated this week
Alternatives and similar repositories for spdx-spec
Users that are interested in spdx-spec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Python library to parse, validate and create SPDX documents.☆243Mar 13, 2026Updated last month
- The model for the information captured in SPDX version 3 standard.☆98Apr 25, 2026Updated last week
- Examples of SPDX files for software combinations☆146Updated this week
- Automating Compliance Tooling Project☆24Jan 28, 2022Updated 4 years ago
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆503Updated this week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- SPDX Tools☆144Oct 7, 2025Updated 6 months ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆86Apr 29, 2026Updated last week
- This repository stores meetings minutes for the SPDX project☆42Updated this week
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆1,020Apr 8, 2026Updated 3 weeks ago
- SPDX Command Line Tools using the Spdx-Java-Library☆90Apr 28, 2026Updated last week
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆97Apr 28, 2026Updated last week
- SBOM Move - Automate build and transfer of SBOMs across systems☆26Updated this week
- A light-weight app to audit and inventory large codebases for open source license compliance.☆74Updated this week
- SW360 Antenna project☆22Mar 17, 2021Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆289Updated this week
- Support CI generation of SBOMs via golang tooling.☆425Jan 13, 2025Updated last year
- The International FOSS Law Book, v.2 and onwards☆15Jan 17, 2022Updated 4 years ago
- sbomasm: The Complete SBOM Management Toolkit☆114Updated this week
- This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …☆53Updated this week
- Source XML and test text files for the SPDX License List☆470Apr 28, 2026Updated last week
- OpenVEX Specification☆175Jan 16, 2026Updated 3 months ago
- Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team☆33Feb 2, 2026Updated 3 months ago
- Source for the website providing online SPDX tools☆71Updated this week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Create SPDX documents automatically with CMake build info☆32May 2, 2021Updated 5 years ago
- FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export contr…☆985Updated this week
- A small application which needs a better name and collects oss-license metadata and combines it☆32Mar 16, 2026Updated last month
- A brief tutorial on how to use Software Package Data Exchange (SPDX)☆144Feb 12, 2024Updated 2 years ago
- REUSE recommendations, tutorials, FAQ and specification☆18May 27, 2024Updated last year
- A suite of tools to automate software compliance checks.☆1,995Updated this week
- Utility that provides an API platform for validating, querying and managing BOM data☆136Jan 2, 2026Updated 4 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Jan 19, 2024Updated 2 years ago
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…��☆215Updated this week
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- SBOM Search - Context aware search in SBOM repositories☆32Nov 24, 2025Updated 5 months ago
- A rest client using shell scripts for the integration of FOSSology into a CI system☆13Jan 27, 2025Updated last year
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆201Updated this week
- ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party package…☆2,524Apr 29, 2026Updated last week
- The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.☆2,019Updated this week
- A desktop workbench for OSS Review Toolkit result files.☆29Apr 29, 2026Updated last week
- The service side of clearlydefined.io☆50Apr 17, 2026Updated 2 weeks ago