Data

Tools

Indexes

Applications

Experiments

Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 1.9% on proxy.golang.org
Top 0.3% dependent packages on proxy.golang.org
Top 0.3% dependent repos on proxy.golang.org
Top 3.6% forks on proxy.golang.org
Top 0.2% docker downloads on proxy.golang.org

proxy.golang.org : github.com/spdx/tools-golang

Collection of Go packages to work with SPDX files

Registry - Source - Documentation - JSON
purl: pkg:golang/github.com/spdx/tools-golang
License: Apache-2.0,GPL-2.0,CC-BY-4.0
Latest release: 12 months ago
First release: about 4 years ago
Namespace: github.com/spdx
Dependent packages: 326
Dependent repositories: 459
Stars: 64 on GitHub
Forks: 44 on GitHub
Docker dependents: 815
Docker downloads: 3,577,522,160
See more repository details: repos.ecosyste.ms
Last synced: 35 minutes ago

Top 6.6% on proxy.golang.org
github.com/vmware-tanzu/cloud-native-security-inspector v0.0.0-20231101073835-4fcc0d53c02b
This project scans and assesses workloads in Kubernetes at runtime. It can apply protection rules...
14 versions - Latest release: over 1 year ago - 81 stars on GitHub
github.com/khulnasoft/vul-operator v0.0.1
2 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/sipsma/dagger v0.9.0
A portable devkit for CI/CD pipelines
90 versions - Latest release: over 1 year ago - 0 stars on GitHub
github.com/lineaje-labs/scorecard/v4 v4.13.1
Package main of OSSF Scoreard.
29 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 1.3% on proxy.golang.org
github.com/ossf/scorecard/v4 v4.13.1
Package main of OSSF Scoreard.
23 versions - Latest release: over 1 year ago - 10 dependent packages - 30 dependent repositories - 3,373 stars on GitHub
github.com/preminger/buildkit v0.12.3
concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
56 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 4.1% on proxy.golang.org
github.com/azure/eraser v1.2.3 removed
20 versions - Latest release: over 1 year ago
Top 4.9% on proxy.golang.org
github.com/armosec/kubescape/v2 v2.9.2
293 versions - Latest release: over 1 year ago - 2 dependent repositories
Top 2.8% on proxy.golang.org
github.com/kubescape/kubescape/v2 v2.9.2
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clust...
293 versions - Latest release: over 1 year ago - 23 dependent repositories - 8,118 stars on GitHub
github.com/nirmata/buildkit v0.12.3
concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
1 version - Latest release: over 1 year ago - 0 stars on GitHub
github.com/LucianErick/trivy-plugin v0.0.3
5 versions - Latest release: over 1 year ago - 1 dependent repositories - 0 stars on GitHub
github.com/lucianerick/trivy-plugin v0.0.3
1 version - Latest release: over 1 year ago - 0 stars on GitHub
Top 10.0% on proxy.golang.org
github.com/maliksalman/spring-boot-scanner v0.2.0
Scans various platforms for deployed spring-boot applications and their metadata
9 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 9.5% on proxy.golang.org
github.com/AcidFlow/buildkit v0.0.0-20231010193348-2745715fca23
1 version - Latest release: over 1 year ago
github.com/anubhav06/copa-grype v0.0.2
🧩 Grype plugin for copa
7 versions - Latest release: over 1 year ago - 0 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/openclarity/kubeclarity/e2e v0.0.0-20231003113853-217c5fc8c9f1
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
46 versions - Latest release: over 1 year ago - 886 stars on GitHub
github.com/cookbook-md/buildkit v0.12.2
concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
1 version - Latest release: over 1 year ago - 0 stars on GitHub
github.com/noqcks/syft v0.0.0-20230920222752-a9e2c4e288e5
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
1 version - Latest release: over 1 year ago - 0 stars on GitHub
Top 10.0% on proxy.golang.org
github.com/khulnasoft-lab/vul-plugin-referrer v0.2.1
2 versions - Latest release: over 1 year ago - 0 stars on GitHub
github.com/testifysec/protobomit v0.0.0-20230906181136-babea33ec556
Protobomit is a command line tool designed to manage Software Bill of Materials (SBOM) by adding ...
1 version - Latest release: almost 2 years ago - 2 stars on GitHub
github.com/02strich/conftest v0.45.0
Write tests against structured configuration data using the Open Policy Agent Rego query language
34 versions - Latest release: almost 2 years ago - 0 stars on GitHub
Top 4.1% on proxy.golang.org
github.com/cloudfoundry/node-engine-cnb v1.9.0
A Cloud Native Buildpack for Node
325 versions - Latest release: almost 2 years ago - 19 dependent packages - 1 dependent repositories - 18 stars on GitHub
Top 6.1% on proxy.golang.org
github.com/paketo-buildpacks/node-engine v1.9.0
A Cloud Native Buildpack for Node
325 versions - Latest release: almost 2 years ago - 18 stars on GitHub
github.com/khulnasoft-lab/vul v0.44.0
3 versions - Latest release: almost 2 years ago - 1 dependent package - 1 dependent repositories - 0 stars on GitHub
github.com/thapabishwa/trivy-kubernetes v0.5.7
Trivy kubernetes library
14 versions - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/kastenhq/syft v0.0.0-20230821225854-0710af25cdbe
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/khulnasoft/vul v1.0.2
3 versions - Latest release: almost 2 years ago - 1 dependent package - 0 stars on GitHub
github.com/khulnasoft/hub v0.0.0-20230818054705-3dc0db12151a
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
Top 9.3% on proxy.golang.org
github.com/tsirysndr/dagger v0.8.4
110 versions - Latest release: almost 2 years ago
Top 9.7% on proxy.golang.org
gitee.com/ligang-2022/trivy v1.44.1
136 versions - Latest release: almost 2 years ago
Top 6.7% on proxy.golang.org
github.com/nikpivkin/trivy v0.45.1
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositori...
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
Top 6.7% on proxy.golang.org
github.com/kubescape/sneeffer v0.0.41
Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container imag...
38 versions - Latest release: almost 2 years ago - 17 stars on GitHub
github.com/khulnasoft-labs/griffon v0.0.0-20230804082139-2b6c84e62ef9
2 versions - Latest release: almost 2 years ago - 0 stars on GitHub
Top 9.7% on proxy.golang.org
github.com/khulnasoft-labs/vul v0.0.1-beta
1 version - Latest release: almost 2 years ago
github.com/verifa/sbom-merge v0.0.1
Experimental tool to merge multiple SPDX SBOMs into single a SBOM
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/mheers/imagesumdb v0.0.0-20230711114013-b341ce040068
A simple container image database for vuln scanning and version pinning
7 versions - Latest release: almost 2 years ago - 1 stars on GitHub
github.com/cmwylie19/zarf v0.28.3
DevSecOps for Air Gap & Limited-Connection Systems. https://zarf.dev/
2 versions - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/sscsb/Scoremet/v4 v4.0.0
Security health metrics for Open Source
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/sscsb/scoremet/v4 v4.0.0
Security health metrics for Open Source
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/ashnamehrotra/eraser v1.1.1
3 versions - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/boss-net/hub v0.0.0-20230628035318-cab28d89af26
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
github.com/nextlinux/govulners v0.0.0-20230626195557-430fc285c7d3
Works seamlessly with Govulners (a fast, modern vulnerability scanner)
1 version - Latest release: almost 2 years ago - 0 stars on GitHub
Top 9.7% on proxy.golang.org
github.com/w3security/w3artifact v0.0.0-20230619114141-391d2ec58605
1 version - Latest release: almost 2 years ago
github.com/raghu-nandan-bs/k8sgpt v1.0.2
Giving Kubernetes Superpowers to everyone
39 versions - Latest release: almost 2 years ago - 0 stars on GitHub
Top 9.7% on proxy.golang.org
github.com/w3security/gosbom v0.0.0-20230619073923-3a63256f755d
1 version - Latest release: almost 2 years ago
github.com/mchmarny/disco v1.1.2
Utility for bulk image, license, and vulnerability discovery in containerize workloads on GCP.
65 versions - Latest release: about 2 years ago - 1 dependent repositories - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/mchmarny/vctl v1.1.2
65 versions - Latest release: about 2 years ago
github.com/NeXTLinux/griffon v0.32.0
2 versions - Latest release: about 2 years ago - 0 stars on GitHub
github.com/nextlinux/griffon v0.62.1
101 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 7.8% on proxy.golang.org
github.com/jetstack/tally v0.0.1
5 versions - Latest release: about 2 years ago - 12 stars on GitHub
github.com/suhasgummanirmata/grype v0.62.0
A vulnerability scanner for container images and filesystems
99 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 8.7% on proxy.golang.org
github.com/nextlinux/sbom v0.0.0-20230522140201-f61acfb75b94
2 versions - Latest release: about 2 years ago
Top 8.7% on proxy.golang.org
github.com/nextlinux/gosbom v0.81.0
157 versions - Latest release: about 2 years ago
github.com/NeXTLinux/gosbom v0.81.0
23 versions - Latest release: about 2 years ago - 0 stars on GitHub
github.com/suhasgummanirmata/syft v0.81.0
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
157 versions - Latest release: about 2 years ago - 0 stars on GitHub
github.com/sajayantony/obom v0.0.2
Copyright © 2023 Sajay Antony Permission is hereby granted, free of charge, to any person obtain...
2 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 9.5% on proxy.golang.org
github.com/jeremyrickard/ratify-package-checker v0.0.0-20230505152433-b5a4cb9a800d
1 version - Latest release: about 2 years ago
Top 8.7% on proxy.golang.org
github.com/w3security/syft v1.5.2
2 versions - Latest release: about 2 years ago
github.com/nextlinux/syft v0.79.0
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
2 versions - Latest release: about 2 years ago - 0 stars on GitHub
github.com/afdesk/trivy-go-plugin v0.0.0-20230428124153-b0496249d74e
The Go basic for Trivy plugins
2 versions - Latest release: about 2 years ago - 1 dependent package - 1 dependent repositories - 0 stars on GitHub
Top 9.3% on proxy.golang.org
github.com/afdesk/trivy-gitlab v0.0.1
1 version - Latest release: about 2 years ago - 1 stars on GitHub
github.com/nextlinux/grype v0.61.1
1 version - Latest release: about 2 years ago - 0 stars on GitHub
github.com/matiasinsaurralde/buildkit v0.11.6
concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
49 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 9.5% on proxy.golang.org
github.com/volvo-cars/lingon/magefiles v0.0.0-20230419122405-76e71f8ecbd5
Lingon is a collection of libraries and tools for building platforms using Go.
1 version - Latest release: about 2 years ago - 74 stars on GitHub
Top 8.7% on proxy.golang.org
github.com/5p2o5pe25out/syft v0.0.1
1 version - Latest release: about 2 years ago
Top 9.9% on proxy.golang.org
github.com/afdesk/csv-report v0.0.2
2 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 8.7% on proxy.golang.org
github.com/lntouchables/syft v0.0.2
2 versions - Latest release: about 2 years ago
Top 8.7% on proxy.golang.org
github.com/5p2O5pe25ouT/syft v0.0.2
2 versions - Latest release: about 2 years ago
Top 8.2% on proxy.golang.org
github.com/ebay/sbom-scorecard v0.0.0-20230410204826-dc7a7080db71
Generate a score for your sbom to understand if it will actually be useful.
3 versions - Latest release: about 2 years ago - 138 stars on GitHub
Top 8.7% on proxy.golang.org
github.com/vmware/carbon-black-cloud-container-cli v1.9.2
carbon-black-cloud-container-cli (also known as cbctl) is a CLI tool that can be used to scan any...
7 versions - Latest release: about 2 years ago - 1 dependent repositories - 4 stars on GitHub
github.com/cvelab/vuls v0.0.0-20230410054429-f9a74c2e35b5
2 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 9.0% on proxy.golang.org
github.com/kbeniwal/vulnerability-adapter v0.0.2
2 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/deepfactor-io/trivy v0.39.0
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as f...
115 versions - Latest release: about 2 years ago - 1 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/manifestori/sbom-composer/parser v0.0.0-20230330095842-18fbc37be232
A tool that takes two or more micro SBOMs and composes them into one distributable SBOM
2 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 9.0% on proxy.golang.org
github.com/depot/buildkit v0.11.5
concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
100 versions - Latest release: about 2 years ago - 1 dependent package - 0 stars on GitHub
Top 8.5% on proxy.golang.org
github.com/threatcode/osv-scanner v0.0.0-20230323160357-1a7096d64f76
1 version - Latest release: about 2 years ago
Top 8.1% on proxy.golang.org
github.com/vmware-samples/sbom-composer/parser v0.0.0-20230323134801-bfb8542973b0
A tool that takes two or more micro SBOMs and composes them into one distributable SBOM
3 versions - Latest release: about 2 years ago - 1 dependent repositories - 18 stars on GitHub
Top 7.2% on proxy.golang.org
github.com/opensbom-generator/sbom-composer/parser v0.0.0-20230323134350-bd863f8a2082
1 version - Latest release: about 2 years ago - 1 dependent repositories
Top 9.0% on proxy.golang.org
github.com/interlynk-io/sbomqs-1 v0.0.12
SBOM quality score - Quality metrics for your sboms
11 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 9.0% on proxy.golang.org
github.com/kchetans/sbomqs v1.0.6
SBOM quality score - Quality metrics for your sboms
34 versions - Latest release: about 2 years ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/srinivaskandukuri/trivy v0.38.3
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositori...
114 versions - Latest release: over 2 years ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/srinivasKandukuri/trivy v0.38.3
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositori...
114 versions - Latest release: over 2 years ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/defenseunicorns/syft v0.75.0
CLI tool and library for generating a Software Bill of Materials from container images and filesy...
151 versions - Latest release: over 2 years ago - 1 dependent package - 0 stars on GitHub
Top 5.6% on proxy.golang.org
github.com/docker/index-cli-plugin v0.0.35
35 versions - Latest release: over 2 years ago - 1 dependent repositories - 38 stars on GitHub
Top 9.0% on proxy.golang.org
github.com/jeniawhite/trivy v0.0.2
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositori...
3 versions - Latest release: over 2 years ago - 0 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/w3security/cvescan v0.0.0-20230225122713-82b092ac3aac
4 versions - Latest release: over 2 years ago - 0 stars on GitHub
Top 8.8% on proxy.golang.org
github.com/cvedb/vul-scanner v1.0.1
1 version - Latest release: over 2 years ago - 0 stars on GitHub
Top 6.7% on proxy.golang.org
github.com/atomisthq/pod-atomisthq-tools.docker v0.3.0
dockerfile parsing for clojure
3 versions - Latest release: over 2 years ago - 4 stars on GitHub
Top 9.9% on proxy.golang.org
github.com/docker/go-imageinspect v0.0.0-20230209181212-e405fbd0dd06
1 version - Latest release: over 2 years ago - 14 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/jpreese/conftest v0.39.0
Write tests against structured configuration data using the Rego query language
18 versions - Latest release: over 2 years ago - 0 stars on GitHub
Top 7.8% on proxy.golang.org
github.com/Portshift/grype-server/grype-server v0.0.0-20230208095608-6def2f3ebd73
Running Grype scanner as a K8s server
2 versions - Latest release: over 2 years ago - 2 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/dburriss/osv-scanner v1.1.0
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
1 version - Latest release: over 2 years ago - 0 stars on GitHub
Top 5.5% on proxy.golang.org
github.com/paketo-buildpacks/jam v1.7.0
21 versions - Latest release: over 2 years ago - 6 dependent packages - 6 dependent repositories - 9 stars on GitHub
github.com/alauda/defsec v0.82.9
Trivy's misconfiguration scanning engine
1 version - Latest release: over 2 years ago - 0 stars on GitHub
github.com/kycheng/defsec v0.82.9
Trivy's misconfiguration scanning engine
1 version - Latest release: over 2 years ago - 0 stars on GitHub
Top 8.4% on proxy.golang.org
github.com/platformplane/platform/kubernetes v0.0.0-20230130140506-cdc24ad9c8a1
41 versions - Latest release: over 2 years ago - 1 dependent package - 0 stars on GitHub
Top 9.3% on proxy.golang.org
github.com/orgtestcodacy11krepos110mb/repo-3143-buildkit v0.11.2
45 versions - Latest release: over 2 years ago
Top 7.6% on proxy.golang.org
github.com/paketo-buildpacks/dotnet-core-runtime v0.12.2
250 versions - Latest release: over 2 years ago - 5 stars on GitHub
Top 5.6% on proxy.golang.org
github.com/cloudfoundry/dotnet-core-runtime-cnb v0.12.2
250 versions - Latest release: over 2 years ago - 7 dependent packages
Top 8.3% on proxy.golang.org
github.com/paketo-buildpacks/dotnet-core-aspnet v0.11.2
245 versions - Latest release: over 2 years ago - 3 stars on GitHub
Past Dependents
Include Past Dependents

Check this option to include packages that no longer depend on this package in their latest version but previously did.

Filter by kind
All kinds runtime 275