GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → nexB → scancode.io

nexB / scancode.io

Licence: Apache-2.0 license
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

Programming Languages

python
139335 projects - #7 most used programming language
HTML
75241 projects

Labels

dockeropen-sourcevirtual-machinevulnerabilitieslicensespdxscascancodesoftware-composition-analysispurlpackage-urlcyclonedxfoss-compliance

Projects that are alternatives of or similar to scancode.io

cyclonedx-python
Creates CycloneDX Software Bill of Materials (SBOM) from Python projects and environments.
Stars: ✭ 78 (+18.18%)
Mutual labels:  spdx, purl, package-url, cyclonedx
cyclonedx-maven-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Stars: ✭ 103 (+56.06%)
Mutual labels:  spdx, purl, package-url, cyclonedx
cyclonedx-cli
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Stars: ✭ 154 (+133.33%)
Mutual labels:  spdx, purl, package-url, cyclonedx
cyclonedx-dotnet
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Stars: ✭ 110 (+66.67%)
Mutual labels:  spdx, purl, package-url, cyclonedx
cyclonedx-php-composer
Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
Stars: ✭ 20 (-69.7%)
Mutual labels:  spdx, purl, package-url, cyclonedx
specification
Software Bill of Material (SBOM) standard designed for use in application security contexts and supply chain component analysis
Stars: ✭ 129 (+95.45%)
Mutual labels:  license, spdx, cyclonedx
packageurl-swift
Swift implementation of the package url spec
Stars: ✭ 21 (-68.18%)
Mutual labels:  purl, package-url
packageurl-python
Python implementation of the package url spec
Stars: ✭ 26 (-60.61%)
Mutual labels:  purl, package-url
dep-scan
Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (+424.24%)
Mutual labels:  sca, cyclonedx
cdxgen
Creates CycloneDX Software Bill-of-Materials (SBOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI//CD pipeline with automatic submission to Dependency Track server.
Stars: ✭ 75 (+13.64%)
Mutual labels:  sca, cyclonedx
license-ls
Get a list of licenses used by a projects dependencies
Stars: ✭ 17 (-74.24%)
Mutual labels:  license, spdx
spdx-license-ids
a list of SPDX license identifiers
Stars: ✭ 29 (-56.06%)
Mutual labels:  license, spdx
licensor
write licenses to stdout
Stars: ✭ 138 (+109.09%)
Mutual labels:  license, spdx
OpossumUI
A light-weight app to audit and inventory large codebases for open source license compliance.
Stars: ✭ 32 (-51.52%)
Mutual labels:  spdx, software-composition-analysis
Retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities
Stars: ✭ 2,909 (+4307.58%)
Mutual labels:  vulnerabilities, software-composition-analysis
vulndb-data-mirror
A simple Java command-line utility to mirror the entire contents of VulnDB.
Stars: ✭ 36 (-45.45%)
Mutual labels:  sca, software-composition-analysis
CyberQueens
CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻
Stars: ✭ 30 (-54.55%)
Mutual labels:  vulnerabilities
evcloud
EVCloud是一个基于ceph和libvirt的轻量级云主机管理平台,实用稳定,维护简易
Stars: ✭ 44 (-33.33%)
Mutual labels:  virtual-machine
sandia-public-license
This is not a license of honor. No highly esteemed copyright statement is written here.
Stars: ✭ 114 (+72.73%)
Mutual labels:  license
flask-vuln
Pretty vulnerable flask app..
Stars: ✭ 23 (-65.15%)
Mutual labels:  vulnerabilities
View All Similar Projects ➔

ScanCode.io

ScanCode.io is a server to script and automate software composition analysis with ScanPipe pipelines.

First application is for Docker container and VM composition analysis.

Getting started

Read more about ScanCode.io here: https://scancodeio.readthedocs.org/

Build and tests status

Tests Documentation
CI Tests Status Documentation Build Status

License

SPDX-License-Identifier: Apache-2.0

The ScanCode.io software is licensed under the Apache License version 2.0. Data generated with ScanCode.io is provided as-is without warranties. ScanCode is a trademark of nexB Inc.

You may not use this software except in compliance with the License. You may obtain a copy of the License at: http://apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Data Generated with ScanCode.io is provided on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. No content created from ScanCode.io should be considered or used as legal advice. Consult an Attorney for any legal advice.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].