🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...
翻译 - :mag_right:ScanCode通过扫描代码来检测许可证,版权,软件包清单和依赖项等,以发现并清点代码中使用的开源和第三方软件包。
The official repository for the AiiDA code
An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
Effortless method to record provenance in Python
Blue Brain Nexus - A knowledge graph for data-driven science
Log shell-commands and used files. Snapshot executed scripts. Fully automatic.
Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance
VisTrails is an open-source data analysis and visualization tool. It provides a comprehensive provenance infrastructure that maintains detailed history information about the steps followed and data de...
Java toolkit to create and convert W3C PROV data model representations, and build provenance-enabled applications in a variety of programming languages (java, python, typescript, javascript)
A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
A set of documents addressing the structure of and supporting services for xAPI Profiles.
Ontology for representing scientific evidence and provenance information
Github Action implementation of SLSA Provenance Generation
Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
Persist is a JupyterLab extension to enable persistent interactive visualizations in JupyterLab notebooks.
Open schemas for F.A.I.R. neuroscience data