An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 5.8% on proxy.golang.org
Top 0.7% dependent packages on proxy.golang.org
Top 2.3% dependent repos on proxy.golang.org
Top 2.0% docker downloads on proxy.golang.org

proxy.golang.org : github.com/github/go-spdx/v2

Golang implementation of a checker for determining if an SPDX ID satisfies an SPDX Expression.

Registry - Source - Documentation - JSON
purl: pkg:golang/github.com/github/go-spdx/v2
License: MIT
Latest release: about 1 month ago
First release: over 2 years ago
Namespace: github.com/github/go-spdx
Dependent packages: 92
Dependent repositories: 5
Stars: 9 on GitHub
Forks: 1 on GitHub
Docker dependents: 68
Docker downloads: 12,861,323
See more repository details: repos.ecosyste.ms
Last synced: about 2 hours ago

Top 6.6% on proxy.golang.org
github.com/salim-runsafe/syft v1.8.1
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
2 versions - Latest release: 12 months ago - 0 stars on GitHub
github.com/innomotics/cyclonedx-license-resolver v0.1.0
Library to support mapping different types of valid CycloneDX licenses to valid SPDX License-IDs
3 versions - Latest release: 12 months ago - 0 stars on GitHub
Top 6.7% on proxy.golang.org
github.hscsec.cn/derailed/k9s v0.32.5
144 versions - Latest release: 12 months ago
Top 7.6% on proxy.golang.org
github.com/cvedb/cvectl v0.0.1
1 version - Latest release: about 1 year ago - 0 stars on GitHub
Top 9.3% on proxy.golang.org
github.com/project-stacker/sbom v0.0.7
A stacker companion SBOM generator library and tool
7 versions - Latest release: about 1 year ago - 0 stars on GitHub
Top 8.7% on proxy.golang.org
github.com/project-stacker/stacker-bom v0.0.7
7 versions - Latest release: about 1 year ago
github.com/edgebitio/syft v1.4.1
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
200 versions - Latest release: about 1 year ago - 0 stars on GitHub
github.com/go-sigma/sigma v1.3.0
OCI artifact manager
8 versions - Latest release: about 1 year ago - 5 stars on GitHub
Top 8.8% on proxy.golang.org
github.phpd.cn/gatecheckdev/gatecheck v0.5.0
26 versions - Latest release: about 1 year ago
Top 8.0% on proxy.golang.org
github.com/racer159/jackal v1.0.0
Package main is the entrypoint for the Jackal binary.
129 versions - Latest release: about 1 year ago - 1 stars on GitHub
Top 8.0% on proxy.golang.org
github.com/Racer159/jackal v1.0.0
Package main is the entrypoint for the Jackal binary.
2 versions - Latest release: about 1 year ago - 0 stars on GitHub
github.com/BenjiTrapp/syft-fork v1.0.0
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
1 version - Latest release: over 1 year ago - 0 stars on GitHub
github.com/benjitrapp/syft-fork v1.0.0
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
1 version - Latest release: over 1 year ago - 0 stars on GitHub
Top 9.1% on proxy.golang.org
github.skymusic.top/anchore/syft v1.0.0
190 versions - Latest release: over 1 year ago
Top 8.6% on proxy.golang.org
github.com/testwill/grype v0.74.7
A vulnerability scanner for container images and filesystems
136 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 5.7% on proxy.golang.org
github.com/deepfence/ThreatMapper/deepfence_worker v0.0.0-20240126010313-b6c4f07d7e7b
Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
191 versions - Latest release: over 1 year ago - 4,364 stars on GitHub
Top 5.8% on proxy.golang.org
github.com/ckotzbauer/sbom-operator v0.0.0-20240121123323-403368f12fb2
Catalogue all images of a Kubernetes cluster to multiple targets with Syft
152 versions - Latest release: over 1 year ago - 155 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/ckotzbauer/vulnerability-operator v0.0.0-20240120095640-993fea8843cd
Scans SBOMs for vulnerabilities with Grype
131 versions - Latest release: over 1 year ago - 71 stars on GitHub
Top 6.7% on proxy.golang.org
github.com/imjasonh/wolfictl v0.1.0
A CLI used to work with the Wolfi OSS project
27 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 9.5% on proxy.golang.org
github.com/lucasrod16/exploitlens v0.0.0-20240115233331-9d0aa3259549
A simple, lightweight vulnerability scanner that reports if CVEs are present in the CISA KEV data...
1 version - Latest release: over 1 year ago - 1 stars on GitHub
Top 4.6% on proxy.golang.org
github.com/openclarity/kubeclarity/runtime_k8s_scanner v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
61 versions - Latest release: over 1 year ago - 886 stars on GitHub
Top 3.8% on proxy.golang.org
github.com/openclarity/kubeclarity/cli v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
85 versions - Latest release: over 1 year ago - 1 dependent package - 1 dependent repositories - 886 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/openclarity/kubeclarity/cis_docker_benchmark_scanner v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
46 versions - Latest release: over 1 year ago - 886 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/openclarity/kubeclarity/backend v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
96 versions - Latest release: over 1 year ago - 886 stars on GitHub
Top 3.2% on proxy.golang.org
github.com/openclarity/kubeclarity/runtime_scan v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
86 versions - Latest release: over 1 year ago - 1 dependent package - 1 dependent repositories - 886 stars on GitHub
Top 2.5% on proxy.golang.org
github.com/openclarity/kubeclarity/shared v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
111 versions - Latest release: over 1 year ago - 7 dependent packages - 1 dependent repositories - 886 stars on GitHub
Top 9.9% on proxy.golang.org
github.com/openclarity/grype-server/grype-server v0.0.0-20240109091301-4b85fc6ec97d
Running Grype scanner as a K8s server
5 versions - Latest release: over 1 year ago - 8 stars on GitHub
github.com/gsoc2/syft v0.98.1
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
180 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/M0Rf30/yap v0.0.0-20231110154441-efab2a56a24c
Package software with ease 📦 Versatile deb, rpm and apk packager fueled by PKGBUILD specfiles and...
26 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 9.2% on proxy.golang.org
github.skymusic.top/openclarity/vmclarity v0.6.0
6 versions - Latest release: over 1 year ago
Top 4.9% on proxy.golang.org
github.com/armosec/kubescape/v2 v2.9.2
293 versions - Latest release: over 1 year ago - 2 dependent repositories
Top 2.8% on proxy.golang.org
github.com/kubescape/kubescape/v2 v2.9.2
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clust...
293 versions - Latest release: over 1 year ago - 23 dependent repositories - 8,118 stars on GitHub
Top 10.0% on proxy.golang.org
github.com/maliksalman/spring-boot-scanner v0.2.0
Scans various platforms for deployed spring-boot applications and their metadata
9 versions - Latest release: over 1 year ago - 0 stars on GitHub
github.com/anubhav06/copa-grype v0.0.2
🧩 Grype plugin for copa
7 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/openclarity/kubeclarity/e2e v0.0.0-20231003113853-217c5fc8c9f1
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
46 versions - Latest release: over 1 year ago - 886 stars on GitHub
github.com/noqcks/syft v0.0.0-20230920222752-a9e2c4e288e5
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
1 version - Latest release: over 1 year ago - 0 stars on GitHub
github.com/kastenhq/syft v0.0.0-20230821225854-0710af25cdbe
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/khulnasoft-labs/griffon v0.0.0-20230804082139-2b6c84e62ef9
2 versions - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/cmwylie19/zarf v0.28.3
DevSecOps for Air Gap & Limited-Connection Systems. https://zarf.dev/
2 versions - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/nextlinux/govulners v0.0.0-20230626195557-430fc285c7d3
Works seamlessly with Govulners (a fast, modern vulnerability scanner)
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
Top 9.7% on proxy.golang.org
github.com/w3security/gosbom v0.0.0-20230619073923-3a63256f755d
1 version - Latest release: almost 2 years ago
github.com/NeXTLinux/griffon v0.32.0
2 versions - Latest release: about 2 years ago - 0 stars on GitHub
github.com/nextlinux/griffon v0.62.1
101 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 7.8% on proxy.golang.org
github.com/jetstack/tally v0.0.1
5 versions - Latest release: about 2 years ago - 12 stars on GitHub
github.com/suhasgummanirmata/grype v0.62.0
A vulnerability scanner for container images and filesystems
99 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 8.7% on proxy.golang.org
github.com/nextlinux/gosbom v0.81.0
157 versions - Latest release: about 2 years ago
github.com/suhasgummanirmata/syft v0.81.0
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
157 versions - Latest release: about 2 years ago - 0 stars on GitHub
github.com/NeXTLinux/gosbom v0.81.0
23 versions - Latest release: about 2 years ago - 0 stars on GitHub
Past Dependents
Include Past Dependents

Check this option to include packages that no longer depend on this package in their latest version but previously did.