CycloneDX / cyclonedx-core-javaLinks
CycloneDX SBOM Model and Utils for Creating and Validating BOMs
☆93Updated this week
Alternatives and similar repositories for cyclonedx-core-java
Users that are interested in cyclonedx-core-java are comparing it to the libraries listed below
Sorting:
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆324Updated last month
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆63Updated this week
- Main repository for the official Dependency-Track Jenkins plugin☆50Updated 3 weeks ago
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆71Updated 3 weeks ago
- ☆116Updated 2 months ago
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆147Updated last week
- Plugin for supporting SPDX in a Maven build.☆56Updated last month
- Frontend UI for Dependency-Track☆126Updated this week
- Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects☆190Updated this week
- Java/JVM implementation of the package url spec☆41Updated 2 weeks ago
- A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…☆51Updated 3 weeks ago
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆78Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆30Updated last year
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆372Updated this week
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆22Updated 5 months ago
- SPDX Command Line Tools using the Spdx-Java-Library☆74Updated 3 weeks ago
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆196Updated 2 months ago
- Java library which implements the Java object model for SPDX and provides useful helper functions☆59Updated this week
- Fork of the Dependency-Track API server. It includes various changes necessary to work with Hyades.☆15Updated this week
- Utility that provides an API platform for validating, querying and managing BOM data☆113Updated 3 weeks ago
- Software Component Verification Standard (SCVS)☆147Updated 2 months ago
- SBOM Assess - Evaluate SBOM quality and compliance☆215Updated this week
- PURL to CPE Relationship mapping project.☆91Updated this week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆402Updated this week
- A framework for defining ratings for open source projects. In particular, the framework offers a security rating for open source projects…☆62Updated 2 months ago
- Scanning and analysis for Black Duck SCA products.☆176Updated this week
- A BOM repository server for distributing CycloneDX BOMs☆77Updated last year
- SBOM Edit - Conditional edits and merging of SBOMs☆70Updated last week
- Check SPDX SBOM for NTIA minimum elements☆64Updated last week
- A scalable server implementation of the OSS Review Toolkit.☆37Updated this week