The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
☆368May 23, 2026Updated this week
Alternatives and similar repositories for spdx-spec
Users that are interested in spdx-spec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Python library to parse, validate and create SPDX documents.☆248Mar 13, 2026Updated 2 months ago
- The model for the information captured in SPDX version 3 standard.☆101May 19, 2026Updated last week
- Examples of SPDX files for software combinations☆147May 19, 2026Updated last week
- Collection of Go packages to work with SPDX files☆166Feb 23, 2026Updated 3 months ago
- Automating Compliance Tooling Project☆24Jan 28, 2022Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆507May 19, 2026Updated last week
- SPDX Tools☆145Oct 7, 2025Updated 7 months ago
- This repository stores meetings minutes for the SPDX project☆42Updated this week
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆1,034May 16, 2026Updated last week
- SPDX Command Line Tools using the Spdx-Java-Library☆93Updated this week
- This repo realizes the idea that OSS compliance activities will be less expensive by applying OSS principles☆97Apr 28, 2026Updated 3 weeks ago
- SBOM Move - Automate build and transfer of SBOMs across systems☆26May 4, 2026Updated 3 weeks ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆74Updated this week
- SBOM Explorer - Discover and pull public SBOMs☆21May 23, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- SW360 Antenna project☆22Mar 17, 2021Updated 5 years ago
- Support CI generation of SBOMs via golang tooling.☆427Jan 13, 2025Updated last year
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆293May 19, 2026Updated last week
- sbomasm: The Complete SBOM Management Toolkit☆118May 19, 2026Updated last week
- This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …☆53Updated this week
- Source XML and test text files for the SPDX License List☆477May 15, 2026Updated last week
- Format agnostic SBOM tooling☆136Nov 20, 2025Updated 6 months ago
- OpenVEX Specification☆179Jan 16, 2026Updated 4 months ago
- Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team☆34Feb 2, 2026Updated 3 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Various data formats for the SPDX License List including RDFa, HTML, Text, and JSON☆667May 14, 2026Updated last week
- Source for the website providing online SPDX tools☆71May 11, 2026Updated 2 weeks ago
- Repository of workplace for the OpenChain Japan Work Group(JWG)☆11May 23, 2022Updated 4 years ago
- FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export contr…☆986May 18, 2026Updated last week
- A small application which needs a better name and collects oss-license metadata and combines it☆32Mar 16, 2026Updated 2 months ago
- A brief tutorial on how to use Software Package Data Exchange (SPDX)☆144Feb 12, 2024Updated 2 years ago
- REUSE recommendations, tutorials, FAQ and specification☆18May 27, 2024Updated last year
- Utility that provides an API platform for validating, querying and managing BOM data☆140May 18, 2026Updated last week
- A suite of tools to automate software compliance checks.☆2,017Updated this week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆217May 18, 2026Updated last week
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆202Updated this week
- ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party package…☆2,532May 19, 2026Updated last week
- The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.☆2,029May 19, 2026Updated last week
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆223Oct 21, 2025Updated 7 months ago
- The service side of clearlydefined.io☆51May 15, 2026Updated last week
- SPDX Governance, based on Community Specification model☆33Aug 6, 2024Updated last year