spdx topic

List spdx repositories

scancode-toolkit

2.0k
Stars
532
Forks
Watchers

:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...

verified publisher icon nexB

tern

942
Stars
187
Forks
Watchers

Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-...

verified publisher icon tern-tools

license-list-data

479
Stars
139
Forks
Watchers

Various data formats for the SPDX License List including RDFa, HTML, Text, and JSON

verified publisher icon spdx

ort

1.5k
Stars
294
Forks
Watchers

A suite of tools to automate software compliance checks.

verified publisher icon oss-review-toolkit

fossology

758
Stars
400
Forks
Watchers

FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and we...

verified publisher icon fossology

specification

363
Stars
59
Forks
Watchers

OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and V...

verified publisher icon CycloneDX

licensor

191
Stars
11
Forks
Watchers

write licenses to stdout

verified publisher icon raftario

spdx-spec

269
Stars
132
Forks
Watchers

The SPDX specification in MarkDown and HTML formats.

verified publisher icon spdx

cyclonedx-maven-plugin

275
Stars
83
Forks
Watchers

Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects

verified publisher icon CycloneDX

bom

305
Stars
43
Forks
Watchers

A utility to generate SPDX-compliant Bill of Materials manifests

verified publisher icon kubernetes-sigs