[martin@nil projects] cat projects.txt

A list of random things I'm currently involved in:

* cvelib: Python's click is quite enjoyable for quickly putting together quick CLI tools.

* Spec work:

  - purl: a good attempt at identifying components across multiple language ecosystems.

  - csaf: a rather enterprisey spec for representing security advisories

  - cve-schema: vulnerability metadata schema.

* The world of software composition analysis, SBOMs, and dependency analysis. So much complexity, so many unknowns!