purl

Here are 13 public repositories matching this topic...

nexB / scancode-toolkit

🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!

Updated Jun 3, 2024
Python

nexB / vulnerablecode

Sponsor

Star

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

security vulnerability snyk vulnerability-databases vulndb cve cpe nvd vulnerability-detection osv vulnerability-identification vulnerability-scanners cvss security-tools ossindex purl package-url vulnerability-database

Updated Jun 1, 2024
Python

CycloneDX / cyclonedx-python

Star

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

python environment poetry conda owasp python3 pip bom spdx requirements bill-of-materials software-bill-of-materials purl package-url sbom cyclonedx sbom-generator sbom-tool

Updated Jun 2, 2024
Python

tiiuae / sbomnix

Star

A suite of utilities to help with software supply chain challenges on nix targets

python security nix static-analysis dependencies cpe software-supply-chain vulnerability-scanners bill-of-materials software-bill-of-materials purl sbom cyclonedx sbom-generator software-supply-chain-security spdx-sbom sbom-tool

Updated May 30, 2024
Python

nexB / scancode.io

Sponsor

Star

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

docker open-source virtual-machine vulnerabilities license spdx sca scancode software-composition-analysis purl package-url cyclonedx foss-compliance

Updated Jun 3, 2024
Python

AppThreat / vulnerability-db

Star

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.

cli database cve nvd vulnerability-detection sca advisories vers purl vulnerability-database

Updated Jun 2, 2024
Python

package-url / packageurl-python

Star

Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and other generous sponsors.

python library hacktoberfest purl package-url

Updated May 30, 2024
Python

CycloneDX / cyclonedx-python-lib

Star

Python implementation of OWASP CycloneDX

python library owasp bom vex spdx attestation bill-of-materials software-bill-of-materials purl package-url sbom software-library cyclonedx obom mbom saasbom cbom

Updated Jun 2, 2024
Python

nexB / univers

Sponsor

Star

Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!