{"payload":{"pageCount":4,"repositories":[{"type":"Public","name":"scancode.io","owner":"nexB","isFork":false,"description":"ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project <a href=\"https://nlnet.nl/project/vulnerabilitydatabase/\" rel=\"nofollow\">https://nlnet.nl/project/vulnerabilitydatabase/</a> Google Summer of Code, nexB and others generous sponsors!","allTopics":["docker","open-source","virtual-machine","vulnerabilities","license","spdx","sca","scancode","software-composition-analysis","purl","package-url","cyclonedx","foss-compliance"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":15,"issueCount":266,"starsCount":95,"forksCount":82,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-08T10:53:35.914Z"}},{"type":"Public","name":"aboutcode-cyclonedx-taxonomy","owner":"nexB","isFork":false,"description":"AboutCode CycloneDX Property Taxonomy","allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":1,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-08T09:00:09.926Z"}},{"type":"Public","name":"aboutcode-toolkit","owner":"nexB","isFork":false,"description":"✅ AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your project: it includes utilities to generate inventory/BOM or Attribution documentation.","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":6,"issueCount":18,"starsCount":90,"forksCount":42,"license":null,"participation":[15,4,5,6,1,1,0,4,4,0,10,1,2,0,13,6,0,0,0,0,1,0,0,0,0,0,3,0,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-08T08:05:38.722Z"}},{"type":"Public","name":"scancode-toolkit","owner":"nexB","isFork":false,"description":"🔍 ScanCode detects licenses, copyrights, dependencies by \"scanning code\" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project <a href=\"https://nlnet.nl/project/vulnerabilitydatabase\" rel=\"nofollow\">https://nlnet.nl/project/vulnerabilitydatabase</a>, the Google Summer of Code, Azure credits, nexB and others generous sponsors!","allTopics":["licensing","packages","open-source-licensing","dependency-graph","provenance","dependencies","license","spdx","copyright","sca","spdx-licenses","license-checking","license-scan","copyright-scan","software-composition-analysis","oss-compliance","purl","package-url","sbom","cyclonedx"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":24,"issueCount":996,"starsCount":2024,"forksCount":533,"license":null,"participation":[14,13,6,6,0,0,2,4,0,7,14,3,15,21,12,1,17,47,59,19,0,7,4,1,2,4,6,18,0,5,0,1,27,8,3,5,29,0,1,7,0,2,1,16,2,2,16,8,11,14,10,13],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-07T20:07:39.779Z"}},{"type":"Public","name":"ScoreCode","owner":"nexB","isFork":false,"description":"A library to fetch and store OpenSSF Scorecard data.","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":1,"issueCount":2,"starsCount":0,"forksCount":1,"license":"Apache License 2.0","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,0,0,3,4],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-07T16:35:05.865Z"}},{"type":"Public","name":"debian-inspector","owner":"nexB","isFork":false,"description":"A python library to parse Debian deb822-style control and copyright files and all related Debian, Ubuntu and Debian-derivative manifest and metadata files, an alternative approach to python-debian.","allTopics":["debian","apt","dpkg","ubuntu","debian-packages","debian-repositories","apt-get","debian-packaging","dpkg-deb","deb822","dep5","debian-control","python-debian","debian-copyright","debian-source-contro"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":2,"issueCount":6,"starsCount":13,"forksCount":7,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-05T22:47:56.312Z"}},{"type":"Public","name":"dejacode","owner":"nexB","isFork":false,"description":"Automate open source license compliance and ensure software supply chain integrity","allTopics":["open-source","vulnerabilities","license","spdx","sca","scancode","purl","package-url","cyclonedx","foss-compliance"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":2,"issueCount":42,"starsCount":18,"forksCount":7,"license":"GNU Affero General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-05T13:27:42.402Z"}},{"type":"Public","name":"vulnerablecode","owner":"nexB","isFork":false,"description":"A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet <a href=\"https://nlnet.nl/project/vulnerabilitydatabase/\" rel=\"nofollow\">https://nlnet.nl/project/vulnerabilitydatabase/</a> for <a href=\"https://www.aboutcode.org/\" rel=\"nofollow\">https://www.aboutcode.org/</a> Chat at <a href=\"https://gitter.im/aboutcode-org/vulnerablecode\" rel=\"nofollow\">https://gitter.im/aboutcode-org/vulnerablecode</a> Docs at <a href=\"https://vulnerablecode.readthedocs.org/\" rel=\"nofollow\">https://vulnerablecode.readthedocs.org/</a>","allTopics":["security","vulnerability","snyk","vulnerability-databases","vulndb","cve","cpe","nvd","vulnerability-detection","osv","vulnerability-identification","vulnerability-scanners","cvss","security-tools","ossindex","purl","package-url","vulnerability-database"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":34,"issueCount":528,"starsCount":503,"forksCount":184,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-05T11:55:12.816Z"}},{"type":"Public","name":"purldb","owner":"nexB","isFork":false,"description":"Tools to create and expose a database of purls (Package URLs). This project is sponsored by NLnet project <a href=\"https://nlnet.nl/project/vulnerabilitydatabase/\" rel=\"nofollow\">https://nlnet.nl/project/vulnerabilitydatabase/</a> and nexB for <a href=\"https://www.aboutcode.org/\" rel=\"nofollow\">https://www.aboutcode.org/</a> Chat is at <a href=\"https://gitter.im/aboutcode-org/discuss\" rel=\"nofollow\">https://gitter.im/aboutcode-org/discuss</a> ","allTopics":["purl","package-url"],"primaryLanguage":{"name":"HTML","color":"#e34c26"},"pullRequestCount":4,"issueCount":203,"starsCount":29,"forksCount":21,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-04T19:17:29.278Z"}},{"type":"Public","name":"scancode-licensedb","owner":"nexB","isFork":false,"description":"A free and open database of all the licenses, in particular all the open source software licenses ","allTopics":["foss","license","scancode-toolkit","scancode-licensedb"],"primaryLanguage":{"name":"Makefile","color":"#427819"},"pullRequestCount":0,"issueCount":20,"starsCount":27,"forksCount":4,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-02T16:05:28.434Z"}},{"type":"Public","name":"dependency-inspector","owner":"nexB","isFork":false,"description":"A general purpose, mostly universal software package dependency resolver.","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":8,"starsCount":1,"forksCount":1,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-02T11:04:10.558Z"}},{"type":"Public","name":"univers","owner":"nexB","isFork":false,"description":"Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project <a href=\"https://nlnet.nl/project/vulnerabilitydatabase/\" rel=\"nofollow\">https://nlnet.nl/project/vulnerabilitydatabase/</a> , the Google Summer of Code, nexB and others generous sponsors!","allTopics":["package-manager","versioning","version","vulnerabilities","dependencies","osv","dependency-resolver","purl","package-url","vulnerablecode"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":6,"issueCount":37,"starsCount":28,"forksCount":10,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-02T10:44:08.834Z"}},{"type":"Public","name":"vulntotal-extension","owner":"nexB","isFork":false,"description":"","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":1,"issueCount":3,"starsCount":0,"forksCount":1,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-01T12:49:07.827Z"}},{"type":"Public template","name":"skeleton","owner":"nexB","isFork":false,"description":"","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":34,"starsCount":8,"forksCount":7,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-07-01T11:15:54.062Z"}},{"type":"Public","name":"pip-requirements-parser","owner":"nexB","isFork":false,"description":"a mostly correct pip requirements parsing library","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":3,"issueCount":12,"starsCount":17,"forksCount":9,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-27T08:22:40.753Z"}},{"type":"Public","name":"fetchcode","owner":"nexB","isFork":false,"description":"A library to reliably fetch code via HTTP, FTP and version control systems. This project is sponsored by NLnet project <a href=\"https://nlnet.nl/project/vulnerabilitydatabase/\" rel=\"nofollow\">https://nlnet.nl/project/vulnerabilitydatabase/</a> Google Summer of Code, nexB and others generous sponsors!","allTopics":[],"primaryLanguage":{"name":"HTML","color":"#e34c26"},"pullRequestCount":16,"issueCount":37,"starsCount":9,"forksCount":18,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-20T19:05:44.286Z"}},{"type":"Public","name":"scancode-plugins","owner":"nexB","isFork":false,"description":"A set of plugins either delivered as builtin scancode-toolkit or extra plugins","allTopics":[],"primaryLanguage":{"name":"HTML","color":"#e34c26"},"pullRequestCount":7,"issueCount":14,"starsCount":2,"forksCount":8,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-18T02:09:21.747Z"}},{"type":"Public","name":"saneyaml","owner":"nexB","isFork":false,"description":"Cleaner, simpler, safer and saner YAML parsing/serialization in Python, for YAML meant to be readable first, on top of PyYAML","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":5,"starsCount":9,"forksCount":4,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-09T15:04:49.211Z"}},{"type":"Public","name":"federatedcode","owner":"nexB","isFork":false,"description":"","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":7,"starsCount":1,"forksCount":1,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-31T09:13:23.473Z"}},{"type":"Public","name":"scancode.io-reference-scans","owner":"nexB","isFork":false,"description":"A set of reference scans with ScanCode.io updated with each new release to track quality and performance progress over time.","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":2,"starsCount":0,"forksCount":0,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-22T17:03:11.619Z"}},{"type":"Public","name":"container-inspector","owner":"nexB","isFork":false,"description":"container-inspector is a suite of analysis utilities and command line tools for Docker container images, their layers and how these relate to each other. It can also handle OCI images and Dockerfiles.","allTopics":["docker","docker-image","container","oci-image","container-image","container-analysis"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":3,"issueCount":16,"starsCount":32,"forksCount":9,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-17T17:33:19.440Z"}},{"type":"Public","name":"extractcode","owner":"nexB","isFork":false,"description":"A mostly universal file extraction library and CLI tool to extract almost any archive in a reasonably safe way on Linux, macOS and Windows.","allTopics":["gzip","zip","extractor","extract","tar","cab","bzip2","decompression","archive","zstd","lzma","iso9660","xz","libarchive","7zip","cpio"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":6,"issueCount":37,"starsCount":31,"forksCount":17,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-16T19:01:10.009Z"}},{"type":"Public","name":"commoncode","owner":"nexB","isFork":false,"description":"","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":1,"issueCount":8,"starsCount":3,"forksCount":11,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-16T18:56:06.915Z"}},{"type":"Public","name":"source-inspector","owner":"nexB","isFork":false,"description":"Tools to inspect source code and code symbols","allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":9,"starsCount":0,"forksCount":1,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-16T10:39:19.177Z"}},{"type":"Public","name":"typecode","owner":"nexB","isFork":false,"description":"","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":3,"issueCount":11,"starsCount":7,"forksCount":9,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-16T00:35:24.972Z"}},{"type":"Public","name":"license-expression","owner":"nexB","isFork":false,"description":"Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX or any other license id scheme.","allTopics":["python","licensing","boolean-expression","spdx","spdx-license","license-expression"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":1,"issueCount":20,"starsCount":54,"forksCount":22,"license":"Other","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-10T15:20:03.805Z"}},{"type":"Public","name":"cwe2","owner":"nexB","isFork":false,"description":"Common weakness enumeration library for Python (maintained fork of <a href=\"https://github.com/Julian-Nash/cwe\">https://github.com/Julian-Nash/cwe</a> )","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":3,"starsCount":11,"forksCount":3,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-09T11:20:44.650Z"}},{"type":"Public","name":"scancode-action","owner":"nexB","isFork":false,"description":"Run ScanCode.io pipelines from your Workflows","allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":3,"starsCount":5,"forksCount":0,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-25T15:55:57.266Z"}},{"type":"Public","name":"go-inspector","owner":"nexB","isFork":false,"description":"An inspector for Go language-based source, binaries, packages, dependencies and metadata","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":2,"issueCount":1,"starsCount":0,"forksCount":2,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-23T09:13:51.655Z"}},{"type":"Public","name":"aboutcode","owner":"nexB","isFork":false,"description":" AboutCode project: tools and data to uncover things about code: the provenance, origin, license, and more (packages, security, quality, etc.) of FOSS code","allTopics":[],"primaryLanguage":{"name":"Batchfile","color":"#C1F12E"},"pullRequestCount":4,"issueCount":11,"starsCount":155,"forksCount":93,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-01T23:28:12.572Z"}}],"repositoryCount":102,"userInfo":null,"searchable":true,"definitions":[],"typeFilters":[{"id":"all","text":"All"},{"id":"public","text":"Public"},{"id":"source","text":"Sources"},{"id":"fork","text":"Forks"},{"id":"archived","text":"Archived"},{"id":"template","text":"Templates"}],"compactMode":false},"title":"nexB repositories"}