The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
☆374Jul 6, 2026Updated this week
Alternatives and similar repositories for spdx-spec
Users that are interested in spdx-spec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Python library to parse, validate and create SPDX documents.☆251Mar 13, 2026Updated 3 months ago
- The model for the information captured in SPDX version 3 standard.☆102Jun 24, 2026Updated last week
- Examples of SPDX files for software combinations☆149Jun 2, 2026Updated last month
- Collection of Go packages to work with SPDX files☆169Jun 25, 2026Updated last week
- Automating Compliance Tooling Project☆24Jan 28, 2022Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆521Jun 28, 2026Updated last week
- SPDX Tools☆145Oct 7, 2025Updated 8 months ago
- Validate SPDX 2 and 3 SBOM against NTIA, CISA, and other minimum element requirements.☆89Updated this week
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆1,066Updated this week
- SPDX Command Line Tools using the Spdx-Java-Library☆97Updated this week
- SBOM Move - Automate build and transfer of SBOMs across systems☆27May 4, 2026Updated 2 months ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆74Updated this week
- SBOM Explorer - Discover and pull public SBOMs☆21May 23, 2025Updated last year
- SW360 Antenna project☆23Mar 17, 2021Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Support CI generation of SBOMs via golang tooling.☆427Jan 13, 2025Updated last year
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆295Updated this week
- sbomasm: The Complete SBOM Management Toolkit☆120Updated this week
- This repo contains license and copyright analysis results of open source packages. It further contains other license compliance relevant …☆54Updated this week
- Source XML and test text files for the SPDX License List☆478May 28, 2026Updated last month
- Format agnostic SBOM tooling☆140Nov 20, 2025Updated 7 months ago
- OpenVEX Specification☆185Jan 16, 2026Updated 5 months ago
- Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team☆34Feb 2, 2026Updated 5 months ago
- Various data formats for the SPDX License List including RDFa, HTML, Text, and JSON☆675May 28, 2026Updated last month
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Repository of workplace for the OpenChain Japan Work Group(JWG)☆11May 23, 2022Updated 4 years ago
- FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export contr…☆1,004Updated this week
- A small application which needs a better name and collects oss-license metadata and combines it☆32Jun 24, 2026Updated last week
- REUSE recommendations, tutorials, FAQ and specification☆19May 27, 2024Updated 2 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆143Jun 29, 2026Updated last week
- A suite of tools to automate software compliance checks.☆2,043Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆34Jan 19, 2024Updated 2 years ago
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆225Jun 26, 2026Updated last week
- SBOM Search - Context aware search in SBOM repositories☆32Nov 24, 2025Updated 7 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A rest client using shell scripts for the integration of FOSSology into a CI system☆13Jan 27, 2025Updated last year
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆205Updated this week
- ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party package…☆2,574Jun 29, 2026Updated last week
- WARNING - Work in Progress - It is not Bug Free! Use with Caution. This repository contains Dockerfiles and accompanying scripts that all…☆13Jun 22, 2022Updated 4 years ago
- The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.☆2,043Jun 18, 2026Updated 2 weeks ago
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆229Oct 21, 2025Updated 8 months ago
- A desktop workbench for OSS Review Toolkit result files.☆29Updated this week