Giters

louib / nix2sbom

nix2sbom extracts the SBOM (Software Bill of Materials) from a Nix derivation

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

cyclonedxnixnixossbomsbom-generatorpurlsoftware-bill-of-materialssecurity

nix2sbom

FlakeHub GitHub Build Status Dependency Status License File

nix2sbom extracts the SBOM (Software Bill of Materials) from a Nix derivation

📚 Documentation for using nix2sbom is here

Warning This repo is still a work-in-progress. The command-line options and command names might change significantly until the project reaches version 1.0.0.

Features

  • Supports CycloneDX 1.4 format
  • Supports JSON and YAML serialization formats
  • Generates a SBOM for your current NixOS system
  • Detects and handles patches
  • Discovers git URLs (using archive URLs)

Installing

With Nix

Assuming that you have enabled both the flakes and nix-command experimental features:

nix profile install github:louib/nix2sbom

With Cargo

cargo install --path .

About

nix2sbom extracts the SBOM (Software Bill of Materials) from a Nix derivation

cyclonedxnixnixossbomsbom-generatorpurlsoftware-bill-of-materialssecurity

License:MIT License

Languages

Language:Rust 98.4%Language:Nix 1.6%