Repository navigation

#

purl

DependencyTrack/dependency-track
DependencyTrack / dependency-track 

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

owaspappsec安全bomvulnerabilitiescomponent-analysisnvdsoftware-securitysoftware-composition-analysisscabill-of-materialspackage-urlpurlvulnerability-detectionossindexsbomdevsecopssecurity-automationcyclonedxHacktoberfest
Java
2982
19 小时前
aboutcode-org / scancode-toolkit 

🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!

licensecopyrightpackages依赖管理spdxprovenancelicense-scanlicensingspdx-licensesopen-source-licensinglicense-checkingsoftware-composition-analysispurlpackage-urlsbomscacyclonedxdependency-graph
Python
2263
1 天前
package-url / purl-spec 

A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby

purlpackage-urlpackageurlcyclonedx依赖管理package-managementsbomspdx
761
3 天前
CycloneDX / cdxgen 

Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. GPT: https://chatgpt.com/g/g-673bfeb4037481919be8a2cd1bf868d2-cdxgen

bomscacyclonedxsbomDockerocicontainersowasppackage-urlpurl
JavaScript
673
14 小时前
aboutcode-org / vulnerablecode 

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Common Vulnerabilities and Exposures (CVE)安全vulnerability-detectionvulnerabilityvulnerability-databasesvulnerability-scannersossindexsnyknvdcvsspackage-urlpurl
Python
572
1 天前
CycloneDX / cyclonedx-cli 

CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.

bombill-of-materialspurlpackage-urlsbomcyclonedxspdxowaspsbom-generatorvexHacktoberfest
C#
351
5 个月前
CycloneDX / cyclonedx-maven-plugin 

Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects

bomspdxMavenmaven-pluginbill-of-materialspackage-urlpurlsbomcyclonedxowaspsbom-generatorvex
Java
320
1 天前
CycloneDX / cyclonedx-python 

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

Pythonpipbomsbomspdxbill-of-materialspackage-urlpurlcyclonedxowaspsbom-generatorpoetrycondarequirementsenvironmentHacktoberfest
Python
276
5 天前
CycloneDX / cyclonedx-dotnet 

Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects

bomspdx.NETbill-of-materialspackage-urlpurlsbomcyclonedxowaspsbom-generatorHacktoberfestvex
C#
214
1 个月前
CycloneDX / cyclonedx-gradle-plugin 

Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects

bomspdxGradlegradle-pluginbill-of-materialspackage-urlpurlsbomcyclonedxowaspsbom-generator
Java
184
5 天前
tiiuae / sbomnix 

A suite of utilities to help with software supply chain challenges on nix targets

cyclonedxNixsbomsbom-generatorPythonbill-of-materials依赖管理purl安全static-analysisvulnerability-scannerssoftware-supply-chainsoftware-supply-chain-security
Python
168
10 天前
aboutcode-org / scancode.io 

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

scasoftware-composition-analysisOpen SourcelicenseDockervirtual-machinecyclonedxpackage-urlpurlspdxvulnerabilities
Python
130
3 天前
CycloneDX / cyclonedx-rust-cargo 

Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects

bomspdxRustcargocargo-pluginbill-of-materialspackage-urlpurlsbomcyclonedxowaspsbom-generatorvex
Rust
124
17 天前
AppThreat / vulnerability-db 

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers.

vulnerability-detectionCommon Vulnerabilities and Exposures (CVE)nvd命令行界面scaadvisories数据库purl
Python
114
4 天前
CycloneDX / sbom-utility 

Utility that provides an API platform for validating, querying and managing BOM data

sbombomcyclonedxspdxvexbill-of-materialsHacktoberfestowasppackage-urlpurl
Go
106
3 天前
CycloneDX / cyclonedx-core-java 

CycloneDX SBOM Model and Utils for Creating and Validating BOMs

bomspdxbill-of-materialspackage-urlpurlsbomcyclonedxowaspvexLibrary
Java
93
5 天前
CycloneDX / cyclonedx-python-lib 

Python implementation of OWASP CycloneDX

Pythonowaspbomspdxbill-of-materialspurlpackage-urlsbomcyclonedxvexattestationLibraryHacktoberfest
Python
80
15 天前
nikstur / bombon 

Nix CycloneDX Software Bills of Materials (SBOMs)

cyclonedxNixsbombill-of-materialsbomlicensesbom-generatorcomponents依赖管理purlspdx
Rust
79
1 个月前
package-url / packageurl-python 

Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and other generous sponsors.

purlpackage-urlLibraryPythonHacktoberfest
Python
74
10 天前
CycloneDX / cyclonedx-php-composer 

Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects

bomspdxPHPcomposer-pluginbill-of-materialspackage-urlpurlsbomcyclonedxowaspsbom-generatorComposerdependency-graphHacktoberfest
PHP
64
4 天前