sbom-tool
There are 3 repositories under sbom-tool topic.
RetireJS / retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
Language:JavaScript 3506intel / cve-bin-tool
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
Language:Python 1063- cyclonedx-python
CycloneDX / cyclonedx-python
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
Language:Python 205 interlynk-io / sbomqs
SBOM quality score - Quality metrics for your sboms
Language:Go 130- cyclonedx-node-module
creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
- Language:Python 94
- Language:Go 93
Utility that provides an API platform for validating, querying and managing BOM data
Language:Go 61- cyclonedx-node-npm
Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
Language:TypeScript 60 - Language:Python 43
- cyclonedx-php-composer
Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
Language:PHP 41 SBOM Assembler - A tool to compose your various sboms into a single sbom.
Language:Go 36- actions-sbom
SecureStackCo / actions-sbom
A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements, and has the SBOM to show it!
- cyclonedx-webpack-plugin
Create CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
Language:TypeScript 23 anthonyharrison / sbomdiff
This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
Language:Python 22SBOM Grep - search through SBOMs
Language:Go 16Transform SBOM contents into a formatted document including markdown and PDF formats
Language:Python 12Library to ingest and generate SBOMs
Language:Python 11Find & pull public SBOMs
Language:Go 11- cyclonedx-node-yarn
Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
Language:TypeScript 10 philips-software / sbom-tool-installer-action
GitHub Action that installs and sets up the Microsoft SBOM Tool.
Language:TypeScript 10- freshli-cli
corgibytes / freshli-cli
A tool for displaying historical metrics about a project's dependencies. Run the Freshli CLI on your project to see how its dependency freshness changes over time.
Language:C# 8 - Language:Go 7
Manage collection of SBOMs (Software Bill of Materials)
Language:Python 6Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects
Language:Python 6SoftwareDesignLab / SBOM-in-a-Box
SBOM-in-a-Box is a unified platform to promote the production, consumption, and utilization of Software Bills of Materials.
Language:Java 5SBOM generator for files within a directory
Language:Python 4Create a dependency graph of the components within a SBOM
Language:Python 3bigdawgsfootball / SBOM-Researcher
Looks up package vulnerability info in OSV DB from SBOMs
Language:PowerShell 3- Language:C# 2
PowerCommands / SecTools
PainKiller Security Tools
Language:C# 2krishnaduttPanchagnula / parlayaction
This repo hosts a github action to run parlay( which is used to Enrich SBOMs with data from third party services ) in piplines
Language:Shell 1nitram2342 / update-python-venv-requirements-and-sbom
Update Python modules in a project's VENV dir, update requirements.txt and also update the Software Bill of material (SBOM)
Language:Shell 1- Language:Racket 1
- Language:JavaScript 1
- Language:Python 1
