PyRank

Sbom Tool Python Packages

Python packages with the GitHub topic sbom-tool. Sorted by relevance, with stars and monthly downloads.
CycloneDX
cyclonedx-bom

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

1.7M 373 93
anthonyharrison
lib4sbom

Library to ingest and generate SBOMs

197K 42 21
CycloneDX
cyclonedx-py

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

77K 373 93
intel
cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

21K 2K 621
spdx
ntia-conformance-checker

Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.

15K 87 22
anthonyharrison
sbom2doc

Transform SBOM contents into a formatted document including markdown and PDF formats

15K 41 9
anthonyharrison
sbomdiff

This tool compares two Software Bill of Materials (SBOMs) and reports the differences.

8K 44 8
anthonyharrison
sbom2dot

Create a dependency graph of the components within a SBOM

7K 20 0
anthonyharrison
sbom4files

SBOM generator for files within a directory

7K 9 1
CycloneDX
cyclonedx-buildroot

Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects

3K 15 7
Taketo-Yoda
uv-sbom-bin

Generate SBOMs for Python projects managed by uv.

2K 3 0
SemClone
osslili

OSLILI - Open Source License Identification Library

1K 7 1
oscarvalenzuelab
semantic-copycat-oslili

OSLILI - Open Source License Identification Library

792 7 1
trailofbits
vendetect

Command-line tool for automatically detecting vendored and copy/pasted code

626 76 6
ARPSyndicate
puncia

Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.

568 663 29
SemClone
purl2src

PURL2SRC - Package URL (PURL) to Source

477 4 0
oscarvalenzuelab
semantic-copycat-purl2notices

PURL2NOTICES - Package URL (PURL) to Legal Notices

433 1 0
SemClone
mcp-semclone

mcp-semclone - Model Context Protocol Server for SEMCL.ONE

425 2 0
oscarvalenzuelab
semantic-copycat-purl2src

PURL2SRC - Package URL (PURL) to Source

355 4 0
vdanen
syfter

SBOM generation and management tool using Syft

347 1 1
SemClone
binarysniffer

BINARYSNIFFER - Binary Static Analyzer

282 3 0
SemClone
purl2notices

PURL2NOTICES - Package URL (PURL) to Legal Notices

277 1 0
trailofbits
it-depends

A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

253 394 24
moverseai
vcpkg-sbom

📓 A python CLI tool to extract a software bill of materials and license info from a vcpkg manifest.

201 5 1