Creates CycloneDX Software Bill-of-Materials (SBoM) from NuGet projects
-
Updated
Mar 27, 2019 - Java
Creates CycloneDX Software Bill-of-Materials (SBoM) from NuGet projects
Creates CycloneDX Software Bill-of-Materials (SBOM) from Go projects. So you can use it with DependencyTrack to monitor security issues in 3rd party modules.
CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
User interface for BOM-bar
Public Tracking Repository for DEPs (DBoM Enhancement Proposals)
Learn DevSecOps with this Demo Application.
node-dependency-track-upload
Lockheed Martin developed utility to compare two CycloneDX SBOMs
GitHub Action to get a license overview in SPDX format
A demonstration of how GoReleaser can help us to make software supply chain more secure by using bunch of tools such as cosign, syft, grype, slsa-provenance
This repo does contains an example of Jenkins/Github Pipeline and a Maven Project.
Practical Cybersecurity Supply Chain Risk Management
SecureStack Application Bill of Materials (ABOM/SBOM)
SIG Security - Software Bill of Materials
Generates a Software Bill of Materials in CycloneDX JSON Format from Veracode SCA Agent results.
Add a description, image, and links to the sbom topic page so that developers can more easily learn about it.
To associate your repository with the sbom topic, visit your repo's landing page and select "manage topics."