Objective
CodeSupply delivers correct, trusted, and verified software metadata, as an open source, federated, and digitally sovereign data catalog, necessary to manage and secure software supply chains. The decentralized distribution of open data democratizes access to valuable datasets, balancing the end-to-end traceability and discoverability of code with organizational autonomy and authority over data assets.
Organizations struggle to manage and secure software supply chains with incorrect, inconsistent, or incomplete information about software. Critical metadata about origin and licenses, vulnerabilities, and project health is scattered across multiple databases, registries, and tools, often presenting conflicting or outdated information. Proprietary options lack transparency in their classification and decision-making processes, providing no reproducibility, traceability, or auditability - essential for organizational trust and regulatory requirements. This fragmentation creates compliance risks, security gaps, and operational inefficiencies that scale exponentially with the complexity of software supply chains.
Open data about software packages is critical for the automation and scale necessary to resolve software supply chain security and compliance challenges. CodeSupply aggregates and curates comprehensive software metadata, leveraging Package-URLs (PURLs) as universal identifiers, including origin and licensing information, security vulnerabilities, and risk metrics from distributed, authoritative data sources across programming ecosystems and software types. This metadata is compiled into data sets, federated in a data catalog for digital sovereignty and independence, and distributed as open data, freely available to all.
Utilizing NGI building blocks of free and open source tools, CodeSupply packages an effective and efficient solution for any software-producing or -consuming organization to manage, mitigate, and remediate any software supply chain challenges.
Fields of science (EuroSciVoc)
CORDIS classifies projects with EuroSciVoc, a multilingual taxonomy of fields of science, through a semi-automatic process based on NLP techniques. See: The European Science Vocabulary.
CORDIS classifies projects with EuroSciVoc, a multilingual taxonomy of fields of science, through a semi-automatic process based on NLP techniques. See: The European Science Vocabulary.
- natural sciences computer and information sciences databases
- social sciences sociology industrial relations automation
You need to log in or register to use this function
Keywords
Project’s keywords as indicated by the project coordinator. Not to be confused with the EuroSciVoc taxonomy (Fields of science)
Project’s keywords as indicated by the project coordinator. Not to be confused with the EuroSciVoc taxonomy (Fields of science)
Programme(s)
Multi-annual funding programmes that define the EU’s priorities for research and innovation.
Multi-annual funding programmes that define the EU’s priorities for research and innovation.
-
HORIZON.2.4 - Digital, Industry and Space
MAIN PROGRAMME
See all projects funded under this programme -
HORIZON.2.4.6 - Next Generation Internet
See all projects funded under this programme -
HORIZON.2.4.2 - Key Digital Technologies
See all projects funded under this programme
Topic(s)
Calls for proposals are divided into topics. A topic defines a specific subject or area for which applicants can submit proposals. The description of a topic comprises its specific scope and the expected impact of the funded project.
Calls for proposals are divided into topics. A topic defines a specific subject or area for which applicants can submit proposals. The description of a topic comprises its specific scope and the expected impact of the funded project.
Funding Scheme
Funding scheme (or “Type of Action”) inside a programme with common features. It specifies: the scope of what is funded; the reimbursement rate; specific evaluation criteria to qualify for funding; and the use of simplified forms of costs like lump sums.
Funding scheme (or “Type of Action”) inside a programme with common features. It specifies: the scope of what is funded; the reimbursement rate; specific evaluation criteria to qualify for funding; and the use of simplified forms of costs like lump sums.
HORIZON-RIA - HORIZON Research and Innovation Actions
See all projects funded under this funding scheme
Call for proposal
Procedure for inviting applicants to submit project proposals, with the aim of receiving EU funding.
Procedure for inviting applicants to submit project proposals, with the aim of receiving EU funding.
(opens in new window) HORIZON-CL4-2025-03
See all projects funded under this callCoordinator
Net EU financial contribution. The sum of money that the participant receives, deducted by the EU contribution to its linked third party. It considers the distribution of the EU financial contribution between direct beneficiaries of the project and other types of participants, like third-party participants.
1098XH Amsterdam
Netherlands
The total costs incurred by this organisation to participate in the project, including direct and indirect costs. This amount is a subset of the overall project budget.