A light-weight app to audit and inventory large codebases for open source license compliance.
Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.
🛠️ Tool for generating SPDX 2.2/2.3 SBOMs from Azure DevOps repository artifacts using https://github.com/microsoft/sbom-tool
Yet another license checker tool for your dependencies; focused on simplicity.
Identify common software licenses
A simple application to crawl your Github repositories, export SBOM's in SPDX format, and ingest these for licensing analysis.
AI-powered tool to automate Software Bill of Materials (SBOM) validation, license compliance, and vulnerability detection for open-source dependencies.
Checks that files have the correct SPDX headers
Parse spdx license expressions into structured object
Add a description, image, and links to the spdx topic page so that developers can more easily learn about it.
To associate your repository with the spdx topic, visit your repo's landing page and select "manage topics."