SCANOSS purl2cpe header SCANOSS purl2cpe header

Vulnerability checking for SBOMs:
PURL to CPE connection solved!

This massive data contribution will allow anyone to check their software bill of materials (SBOM) against known vulnerabilities, freely, securely and anonymously.

We have released CPE to PURL (Package URL) relationships as open source! This will allow you to more easily track and manage the third-party libraries, frameworks, and other components included in software applications, ensuring compliance with industry regulations and minimizing the risk of security vulnerabilities.

Security is of the utmost importance when it comes to managing software assets, and the ability to track and manage dependencies is a crucial aspect of ensuring the security and compliance of your software assets.

Please visit our Github repository Purl to CPE

Ready to facilitate the next wave of Open Source adoption?

Get in touch