Pinned Repositories
aboutcode-toolkit
:white_check_mark: AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your project: it includes utilities to generate inventory/BOM or Attribution documentation.
commoncode
container-inspector
container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relate to each other. It can also handle OCI images and Dockerfiles.
debian-inspector
A python library to parse Debian deb822-style control and copyright files and all related Debian, Ubuntu and Debian-derivative manifest and metadata files, an alternative approach to python-debian.
emilia-project
extractcode
A mostly universal file extraction library and CLI tool to extract almost any archive in a reasonably safe way on Linux, macOS and Windows.
fetchcode
A library to reliably fetch code via HTTP, FTP and version control systems. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!
outreach
content for outreach activities
plugincode
purldb
Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ and nexB for https://www.aboutcode.org/ Chat is at https://gitter.im/aboutcode-org/discuss
armintaenzertng's Repositories
armintaenzertng/aboutcode-toolkit
:white_check_mark: AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your project: it includes utilities to generate inventory/BOM or Attribution documentation.
armintaenzertng/commoncode
armintaenzertng/container-inspector
container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relate to each other. It can also handle OCI images and Dockerfiles.
armintaenzertng/debian-inspector
A python library to parse Debian deb822-style control and copyright files and all related Debian, Ubuntu and Debian-derivative manifest and metadata files, an alternative approach to python-debian.
armintaenzertng/emilia-project
armintaenzertng/extractcode
A mostly universal file extraction library and CLI tool to extract almost any archive in a reasonably safe way on Linux, macOS and Windows.
armintaenzertng/fetchcode
A library to reliably fetch code via HTTP, FTP and version control systems. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!
armintaenzertng/outreach
content for outreach activities
armintaenzertng/plugincode
armintaenzertng/purldb
Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ and nexB for https://www.aboutcode.org/ Chat is at https://gitter.im/aboutcode-org/discuss
armintaenzertng/scancode-toolkit
:mag_right: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!
armintaenzertng/spdx-3-model
armintaenzertng/Spdx-Java-Library
Java library which implements the Java object model for SPDX and provides useful helper functions
armintaenzertng/spdx-3-serialization-prototype-playground
TEMPORARY repo to contain different draft examples for SPDX 3.0 serializations
armintaenzertng/spdx-json-fun-wg
just some throwing ideas at SPDX and JSON
armintaenzertng/spdx-online-tools
Source for the website providing online SPDX tools
armintaenzertng/spdx-spec
The SPDX specification in MarkDown and HTML formats.
armintaenzertng/spec-parser
automagically process the specification
armintaenzertng/tern
Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.
armintaenzertng/tools-java
SPDX Command Line Tools using the Spdx-Java-Library
armintaenzertng/tools-python
A Python library to parse, validate and create SPDX documents.
armintaenzertng/typecode