Support CI generation of SBOMs via golang tooling.
Tools for working with the SPDX license list and validating licenses.
Examples of SPDX files for software combinations
SPDX Command Line Tools using the Spdx-Java-Library
Source for the website providing online SPDX tools
🆔 Helper crate for SPDX expressions. 🦀
The model for the information captured in SPDX version 3 standard.
A Python library to parse, validate and create SPDX documents.
Chrome/Firefox browser extension to compare text against spdx license list
A utility to generate SPDX-compliant Bill of Materials manifests
Collection of Go packages to work with SPDX files
The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.
Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-...
(function(sttc){/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var n;function aa(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!...