PyPI Stats

Sbom Tool Python Packages

Python packages with the GitHub topic sbom-tool. Sorted by relevance, with stars and monthly downloads.
CycloneDX
cyclonedx-bom

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

1.5M 371 93
anthonyharrison
lib4sbom

Library to ingest and generate SBOMs

246K 41 21
CycloneDX
cyclonedx-py

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

66K 371 93
intel
cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

18K 2K 619
anthonyharrison
sbom2doc

Transform SBOM contents into a formatted document including markdown and PDF formats

15K 41 8
spdx
ntia-conformance-checker

Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.

15K 86 22
anthonyharrison
sbomdiff

This tool compares two Software Bill of Materials (SBOMs) and reports the differences.

9K 44 8
anthonyharrison
sbom2dot

Create a dependency graph of the components within a SBOM

8K 20 0
anthonyharrison
sbom4files

SBOM generator for files within a directory

8K 9 1
CycloneDX
cyclonedx-buildroot

Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects

3K 15 7
Taketo-Yoda
uv-sbom-bin

Generate SBOMs for Python projects managed by uv.

2K 3 0
SemClone
osslili

Open Source License Identification Library

2K 6 1
ARPSyndicate
puncia

Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.

1K 663 29
oscarvalenzuelab
semantic-copycat-oslili

OSLILI - Open Source License Identification Library

755 7 1
trailofbits
vendetect

Command-line tool for automatically detecting vendored and copy/pasted code

585 76 6
SemClone
mcp-semclone

mcp-semclone - Model Context Protocol Server for SEMCL.ONE

561 2 0
oscarvalenzuelab
semantic-copycat-purl2notices

PURL2NOTICES - Package URL (PURL) to Legal Notices

371 1 0
trailofbits
it-depends

A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

267 390 24
SemClone
purl2src

Translate Package URLs (PURLs) into validated download URLs for source code artifacts

228 4 0
moverseai
vcpkg-sbom

📓 A python CLI tool to extract a software bill of materials and license info from a vcpkg manifest.

219 5 1
oscarvalenzuelab
semantic-copycat-purl2src

PURL2SRC - Package URL (PURL) to Source

210 4 0
SemClone
purl2notices

PURL2NOTICES - Package URL (PURL) to Legal Notices

207 1 0
SemClone
binarysniffer

BINARYSNIFFER - Binary Static Analyzer

183 3 0
yuanzhou3118
sbom2csv

Transform SBOM contents into a formatted csv file.

182 1 1