:mag: ScanCode detects licenses, copyrights, dependencies by "scanning c...
A suite of tools to automate software compliance checks.
OpenSCA is an open source software supply chain security solution that s...
Tern is a software composition analysis tool and Python library that gen...
FOSSology is an open source license compliance software system and toolk...
A minimal specification for purl aka. a package "mostly universal" URL, ...
Various data formats for the SPDX License List including RDFa, HTML, Tex...
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
reuse is a tool for compliance with the REUSE recommendations.
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that pr...
Chainloop is an Open Source Metadata Vault for your Software Supply Chai...
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversi...
Reliable project licenses detector.
CycloneDX Software Bill of Materials (SBOM) generator for Python project...