The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
☆359Mar 2, 2026Updated this week
Alternatives and similar repositories for spdx-spec
Users that are interested in spdx-spec are comparing it to the libraries listed below
Sorting:
- A Python library to parse, validate and create SPDX documents.☆239Jan 16, 2026Updated last month
- Examples of SPDX files for software combinations☆143Nov 15, 2025Updated 3 months ago
- The model for the information captured in SPDX version 3 standard.☆99Updated this week
- Collection of Go packages to work with SPDX files☆160Feb 23, 2026Updated last week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆485Feb 26, 2026Updated last week
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆81Feb 25, 2026Updated last week
- This repository stores meetings minutes for the SPDX project☆39Updated this week
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆980Updated this week
- A light-weight app to audit and inventory large codebases for open source license compliance.☆72Updated this week
- Source XML and test text files for the SPDX License List☆454Feb 20, 2026Updated 2 weeks ago
- SPDX Command Line Tools using the Spdx-Java-Library☆88Feb 18, 2026Updated 2 weeks ago
- SPDX Tools☆143Oct 7, 2025Updated 4 months ago
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆269Feb 26, 2026Updated last week
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆94Updated this week
- This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …☆53Updated this week
- Support CI generation of SBOMs via golang tooling.☆424Jan 13, 2025Updated last year
- OpenVEX Specification☆168Jan 16, 2026Updated last month
- sbomasm: The Complete SBOM Management Toolkit☆107Updated this week
- The International FOSS Law Book, v.2 and onwards☆15Jan 17, 2022Updated 4 years ago
- SW360 Antenna project☆22Mar 17, 2021Updated 4 years ago
- Format agnostic SBOM tooling☆133Nov 20, 2025Updated 3 months ago
- Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team☆33Feb 2, 2026Updated last month
- Source for the website providing online SPDX tools☆72Dec 28, 2025Updated 2 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Jan 19, 2024Updated 2 years ago
- A small application which needs a better name and collects oss-license metadata and combines it☆32Updated this week
- FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export contr…☆968Updated this week
- The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…☆18Dec 29, 2025Updated 2 months ago
- SBOM Explorer - Discover and pull public SBOMs☆20May 23, 2025Updated 9 months ago
- SBOM Move - Automate build and transfer of SBOMs across systems☆25Updated this week
- A suite of tools to automate software compliance checks.☆1,949Updated this week
- GitHub Action to get a license overview in SPDX format☆14Dec 24, 2021Updated 4 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆128Jan 2, 2026Updated 2 months ago
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆571May 20, 2025Updated 9 months ago
- The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.☆1,991Updated this week
- REUSE recommendations, tutorials, FAQ and specification☆18May 27, 2024Updated last year
- Publications done by Double Open.☆16Jun 5, 2020Updated 5 years ago
- A desktop workbench for OSS Review Toolkit result files.☆29Feb 26, 2026Updated last week
- Scans your project to determine what components you use☆533Feb 27, 2026Updated last week
- The service side of clearlydefined.io☆50Updated this week