sbom-generator

Here are 72 public repositories matching this topic...

RetireJS / retire.js

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

javascript chrome-extension security scanner grunt-plugins firefox-extension build-tool vulnerabilities software-composition-analysis vulnerable-libraries insecure-libraries sbom sbom-generator sbom-tool

Updated Apr 23, 2024
JavaScript

oss-review-toolkit / ort

Star

A suite of tools to automate software compliance checks.

Updated May 3, 2024
Kotlin

microsoft / sbom-tool

Star

The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.

sbom sbom-generator

Updated May 2, 2024
C#

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Updated May 2, 2024
TypeScript

awesomeSBOM / awesome-sbom

Star

A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles

awesome software-bill-of-materials sbom sbom-generator awesome-repos sbom-examples awesome-sbom

Updated Apr 23, 2024

trailofbits / it-depends

Star

A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

dependency-analysis dependency-graph hacktoberfest vulnerability-scanner sbom hacktoberfest2021 sbom-generator

Updated Mar 13, 2024
Python

CycloneDX / cyclonedx-maven-plugin

Star

Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects

maven owasp maven-plugin bom vex spdx bill-of-materials software-bill-of-materials purl package-url sbom cyclonedx sbom-generator obom mbom saasbom

Updated May 3, 2024
Java

CycloneDX / cyclonedx-cli

Star

CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.

owasp bom vex spdx hacktoberfest bill-of-materials software-bill-of-materials purl package-url sbom cyclonedx sbom-generator obom mbom saasbom

Updated Feb 2, 2024
C#

CycloneDX / cyclonedx-python

Star

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

python environment poetry conda owasp python3 pip bom spdx requirements bill-of-materials software-bill-of-materials purl package-url sbom cyclonedx sbom-generator sbom-tool

Updated May 2, 2024
Python

CycloneDX / cyclonedx-dotnet

Star

Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects

dotnet owasp bom dotnet-core vex spdx hacktoberfest bill-of-materials software-bill-of-materials purl package-url sbom cyclonedx sbom-generator obom mbom saasbom

Updated Apr 29, 2024
C#

CycloneDX / cyclonedx-gradle-plugin

Star

Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects

gradle owasp gradle-plugin bom spdx bill-of-materials software-bill-of-materials purl package-url sbom cyclonedx sbom-generator

Updated Apr 29, 2024
Java

CycloneDX / cyclonedx-gomod

Star

Creates CycloneDX Software Bill of Materials (SBOM) from Go modules

golang owasp bom vex bill-of-materials software-bill-of-materials go-modules sbom sbom-generator obom mbom saasbom

Updated May 3, 2024
Go

CycloneDX / cyclonedx-node-module

Star

creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects

nodejs node dependency-graph bom metapackage meta-package software-bill-of-materials sbom cyclonedx sbom-generator sbom-tool

Updated May 3, 2024

tiiuae / sbomnix

Star

A suite of utilities to help with software supply chain challenges on nix targets

python security nix static-analysis dependencies cpe software-supply-chain vulnerability-scanners bill-of-materials software-bill-of-materials purl sbom cyclonedx sbom-generator software-supply-chain-security spdx-sbom sbom-tool

Updated Apr 9, 2024
Python

CycloneDX / cyclonedx-rust-cargo

Star

Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects

rust owasp cargo bom vex spdx bill-of-materials software-bill-of-materials purl package-url cargo-plugin sbom cyclonedx sbom-generator obom mbom saasbom

Updated May 2, 2024
Rust

intelops / compage

Star

Compage - Low-Code Framework to develop Rest API, gRPC, dRPC, GraphQL, WebAssembly, microservices, FaaS, Temporal workloads, IoT and edge services, K8s controllers, K8s CRDs, K8s custom APIs, K8s Operators, K8s hooks, etc. with minimal coding and by automatically applying best practice methods like software supply chain security measures, SBOM, …

Updated May 3, 2024
Go

oxsecurity / codetotal

Star

Analyze any snippet, file, or repository to detect possible security flaws such as secret in code, open source vulnerability, code security, vulnerability, insecure infrastructure as code, and potential legal issues with open source licenses.