This repo hosts a github action to run parlay( which is used to Enrich SBOMs with data from third party services ) in piplines
-
Updated
Mar 13, 2024 - Shell
This repo hosts a github action to run parlay( which is used to Enrich SBOMs with data from third party services ) in piplines
Looks up package vulnerability info in OSV DB from SBOMs
Create a dependency graph of the components within a SBOM
Update Python modules in a project's VENV dir, update requirements.txt and also update the Software Bill of material (SBOM)
SBOM-in-a-Box is a unified platform to promote the production, consumption, and utilization of Software Bills of Materials.
PainKiller Security Tools
A tool to reverse engineer and inspect the RPM and APT databases to list all the packages along with executables, service and versions.
SBOMinify is a GitHub Action to capture and list installed packages and their versions in a Docker image, generating Software Bill of Materials (SBOM) files. This action leverages some special technics to scan Docker images and output SBOM files in both table and JSON formats.
First part of a small tool series. The Task of the tool series is to scan a project for its dependencies convert them to a usable format, fetches metadata for these packages and genrate a ots/foss document. This tool converts any sbom output to a from me defined output
SBOM Parsing For Humans
SBOM Grep - search through SBOMs
Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects
Find & pull public SBOMs
Add a description, image, and links to the sbom-tool topic page so that developers can more easily learn about it.
To associate your repository with the sbom-tool topic, visit your repo's landing page and select "manage topics."