Produce an Open Source Vulnerability JSON file based on information in an SPDX document
☆64May 27, 2024Updated last year
Alternatives and similar repositories for spdx-to-osv
Users that are interested in spdx-to-osv are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Jan 19, 2024Updated 2 years ago
- Tool to scan a container image's rootfs☆12Nov 6, 2023Updated 2 years ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆608Feb 10, 2026Updated 2 months ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆43Mar 9, 2026Updated last month
- A CLI tool for generating a Software Bill of Materials (SBOM) from Yocto Project.☆27Mar 20, 2026Updated 3 weeks ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A place to systematically store software bill of materials (SBOM) documents.☆50Jun 1, 2023Updated 2 years ago
- Repository of SBOMs generated by the syft SBOM generator tool, against a list of popular dockerhub container images.☆19Mar 3, 2026Updated last month
- Support CI generation of SBOMs via golang tooling.☆425Jan 13, 2025Updated last year
- Examples of SPDX files for software combinations☆145Mar 31, 2026Updated 2 weeks ago
- Utility that provides an API and CLI to identify licenses and legal terms☆52Jul 11, 2025Updated 9 months ago
- Automating Compliance Tooling Project☆22Jan 28, 2022Updated 4 years ago
- Source for the website providing online SPDX tools☆72Updated this week
- Open Source Vulnerability schema.☆244Apr 8, 2026Updated last week
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆221Oct 21, 2025Updated 5 months ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A C/C++ dependency scanner☆41Nov 24, 2023Updated 2 years ago
- REUSE recommendations, tutorials, FAQ and specification☆18May 27, 2024Updated last year
- A utility to generate SPDX-compliant Bill of Materials manifests☆452Updated this week
- ⚡ Guidance, samples, and tools for HPC workloads on AKS clusters with RDMA and InfiniBand support, including GPUDirect RDMA.☆22Updated this week
- An SBOM query language and associated utilities☆56Jan 22, 2024Updated 2 years ago
- conftest plugin that transforms k8s input object to be compatible with gatekeeper policies☆14Jan 26, 2024Updated 2 years ago
- PURL to CPE Relationship mapping project.☆113Updated this week
- Global Security Database☆320Apr 29, 2024Updated last year
- GitHub Action to get a license overview in SPDX format☆14Dec 24, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- SPDX Merge tool☆51Apr 7, 2026Updated last week
- Library to ingest and generate VEX documents☆20Mar 9, 2026Updated last month
- SBOM Explorer - Discover and pull public SBOMs☆21May 23, 2025Updated 10 months ago
- A tool to match license text with SPDX license list using a an algorithm with finds close matches. It follows SPDX Matching guidelines to…☆33Dec 24, 2025Updated 3 months ago
- Kubernetes KMS implementation☆27Apr 9, 2026Updated last week
- krew-wasm offers a way to write and distribute kubectl plugins based on WebAssembly☆14Apr 15, 2024Updated 2 years ago
- Orthos is a machine administration tool.☆20Updated this week
- TUI for managing beads☆37Jan 8, 2026Updated 3 months ago
- ☆123Apr 15, 2025Updated last year
- Deploy open-source AI quickly and easily - Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Threat Hunting at Scale: Auditing Thousands of Clusters With Falco + Fluent☆12Aug 13, 2022Updated 3 years ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆485Mar 31, 2026Updated 2 weeks ago
- A tool to create, transform and attest VEX metadata☆184Updated this week
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 3 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆136Jan 2, 2026Updated 3 months ago
- A super tiny agent (binary 5MB, container 12MB) that pushs app logs to Azure Log Analytics (OMS)☆16Aug 15, 2018Updated 7 years ago
- 🥑 Inspect and understand an organization's software supply chain using AI to enable stakeholders to make actionable decisions about soft…☆22Apr 15, 2024Updated 2 years ago