swinslow / npm-spdx
Golang tool to pull and summarize NPM license info
☆12Updated last year
Related projects ⓘ
Alternatives and complementary repositories for npm-spdx
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 2 weeks ago
- Compare vulnerability scanners results (to make them better!)☆15Updated this week
- TACOS framework structural details☆20Updated 11 months ago
- Github Action implementation of SLSA Provenance Generation☆47Updated this week
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated last year
- ☆26Updated this week
- The Auditree data gathering and reporting tool.☆13Updated 3 months ago
- An SBOM query language and associated utilities☆54Updated 10 months ago
- Security advisory data for Wolfi☆13Updated this week
- A proof-of-concept SLSA provenance generator for Jenkins☆19Updated 3 months ago
- ☆13Updated last year
- Proof-of-concept SLSA provenance generator for GitHub Actions☆99Updated 2 years ago
- Slack alert bot for matching Github Audit Events☆10Updated last week
- Report missing advisories and corrections on OSS Index☆17Updated last year
- ☆30Updated 3 weeks ago
- ☆23Updated 3 months ago
- A specification for signing methods and formats used by Secure Systems Lab projects.☆68Updated 2 months ago
- ☆61Updated 4 months ago
- A BOM repository server for distributing CycloneDX BOMs☆74Updated 8 months ago
- The Auditree common fetchers, checks and harvest reports library.☆17Updated last year
- Darkbit Cloud Security Tools☆25Updated 4 years ago
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated last year
- NIST OSCAL SDK and CLI☆17Updated 4 months ago
- 📖 A repo of configuration examples for StackHawk's Hawkscan!☆15Updated last month
- in-toto is a framework to secure the software supply chain.☆69Updated 3 weeks ago
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- NIST OSCAL SDK and CLI☆36Updated 4 years ago
- Template repository for new images☆25Updated last year
- Software Bill of Material (SBOM) to Markdown conversion☆9Updated 7 months ago