top of page

This massive data contribution will allow anyone to check their software bill of materials (SBOM) against known vulnerabilities, freely, securely and anonymously.

We have released CPE to PURL (Package URL) relationships as open source! This will allow you to more easily track and manage the third-party libraries, frameworks, and other components included in software applications, ensuring compliance with industry regulations and minimizing the risk of security vulnerabilities.

Security is of the utmost importance when it comes to managing software assets, and the ability to track and manage dependencies is a crucial aspect of ensuring the security and compliance of your software assets.

Vulnerability checking for SBOMs: 
PURL to CPE connections solved!
Please visit our Github repository

Ready to facilitate the next wave
of Open Source adoption?

bottom of page