preparing new version
Production-Grade ML System for Automated Unit of Measure Error Detection | 88-92% Accuracy | 94% Autonomy | KNIME Workflow
A collection of reference Jupyter notebooks and demo AI/ML applications for enterprise use cases: marketing, pricing, supply chain, smart manufacturing, and more.
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server
🏆Open Source Security Foundation (OpenSSF) Best Practices Badge (formerly Core Infrastructure Initiative (CII) Best Practices Badge)
Software Supply Chain Transparency Log
GUAC aggregates software security metadata into a high fidelity graph database.
OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure
in-toto is a framework to protect supply chain integrity.
FOSSLight Hub : Integrated management web-service for Open Source Compliance Process
Go implementation of The Update Framework (TUF)
Supplychainpy is a Python library for supply chain analysis, modelling and simulation. The library assists a workflow that is reliant on Excel and VBA.
Environments for OR and RL Research
Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them
Official GitHub Action for OpenSSF Scorecard.
Endo is a distributed secure JavaScript sandbox, based on SES
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
Add a description, image, and links to the supply-chain topic page so that developers can more easily learn about it.
To associate your repository with the supply-chain topic, visit your repo's landing page and select "manage topics."