Produce an Open Source Vulnerability JSON file based on information in an SPDX document
☆64May 27, 2024Updated last year
Alternatives and similar repositories for spdx-to-osv
Users that are interested in spdx-to-osv are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Jan 19, 2024Updated 2 years ago
- Tool to scan a container image's rootfs☆12Nov 6, 2023Updated 2 years ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆608Feb 10, 2026Updated 2 months ago
- This tool compares two Software Bill of Materials (SBOMs) and reports the differences.☆44Mar 9, 2026Updated 2 months ago
- A CLI tool for generating a Software Bill of Materials (SBOM) from Yocto Project.☆27Mar 20, 2026Updated last month
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A place to systematically store software bill of materials (SBOM) documents.☆50Jun 1, 2023Updated 2 years ago
- Repository of SBOMs generated by the syft SBOM generator tool, against a list of popular dockerhub container images.☆20Mar 3, 2026Updated 2 months ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- Support CI generation of SBOMs via golang tooling.☆425Jan 13, 2025Updated last year
- Examples of SPDX files for software combinations☆146May 1, 2026Updated last week
- Utility that provides an API and CLI to identify licenses and legal terms☆54Jul 11, 2025Updated 9 months ago
- Automating Compliance Tooling Project☆24Jan 28, 2022Updated 4 years ago
- Source for the website providing online SPDX tools☆71May 3, 2026Updated last week
- Open Source Vulnerability schema.☆247Apr 28, 2026Updated last week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆223Oct 21, 2025Updated 6 months ago
- A C/C++ dependency scanner☆40Nov 24, 2023Updated 2 years ago
- REUSE recommendations, tutorials, FAQ and specification☆18May 27, 2024Updated last year
- ⚡ Guidance, samples, and tools for HPC workloads on AKS clusters with RDMA and InfiniBand support, including GPUDirect RDMA.☆23Apr 30, 2026Updated last week
- An SBOM query language and associated utilities☆56Jan 22, 2024Updated 2 years ago
- conftest plugin that transforms k8s input object to be compatible with gatekeeper policies☆14Jan 26, 2024Updated 2 years ago
- ☆17Updated this week
- ☆102Sep 27, 2024Updated last year
- Global Security Database☆319Apr 29, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- GitHub Action to get a license overview in SPDX format☆14Dec 24, 2021Updated 4 years ago
- SPDX Merge tool☆51Apr 13, 2026Updated 3 weeks ago
- Convert YAML calendar entries to ICS☆22Apr 28, 2026Updated last week
- Library to ingest and generate VEX documents☆20Mar 9, 2026Updated 2 months ago
- Training material examples, code snippets, manifests, etc.☆13Jun 20, 2017Updated 8 years ago
- A tool to match license text with SPDX license list using a an algorithm with finds close matches. It follows SPDX Matching guidelines to…☆33Apr 30, 2026Updated last week
- Kubernetes KMS implementation☆27Apr 24, 2026Updated 2 weeks ago
- krew-wasm offers a way to write and distribute kubectl plugins based on WebAssembly☆14Apr 15, 2024Updated 2 years ago
- Orthos is a machine administration tool.☆20Updated this week
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆123Apr 15, 2025Updated last year
- Threat Hunting at Scale: Auditing Thousands of Clusters With Falco + Fluent☆12Aug 13, 2022Updated 3 years ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆492Apr 29, 2026Updated last week
- A tool to create, transform and attest VEX metadata☆188Updated this week
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 3 years ago
- TUI for managing beads☆39Jan 8, 2026Updated 4 months ago
- A super tiny agent (binary 5MB, container 12MB) that pushs app logs to Azure Log Analytics (OMS)☆16Aug 15, 2018Updated 7 years ago