CycloneDX / cyclonedx-gradle-pluginLinks
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
☆188Updated last week
Alternatives and similar repositories for cyclonedx-gradle-plugin
Users that are interested in cyclonedx-gradle-plugin are comparing it to the libraries listed below
Sorting:
- Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Lifecycle.☆77Updated 3 weeks ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆93Updated last week
- The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for …☆373Updated last month
- java clients for sigstore☆55Updated this week
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆323Updated last month
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆72Updated this week
- ☆114Updated last month
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆145Updated last week
- A Gradle plugin to use dependencies from 'module-info.java' files.☆52Updated last week
- OpenRewrite's Gradle plugin.☆71Updated last week
- Plugin for supporting SPDX in a Maven build.☆56Updated last month
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆18Updated this week
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆365Updated 6 months ago
- A scalable server implementation of the OSS Review Toolkit.☆36Updated this week
- Gradle plugin to improve Dependency Conflict Detection and Resolution☆57Updated this week
- Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository☆114Updated this week
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆63Updated this week
- Utility that provides an API platform for validating, querying and managing BOM data☆111Updated last week
- ☆190Updated this week
- Instrument your Gradle build with OpenTelemetry observability to find and eliminate bottlenecks in your build☆36Updated this week
- Minimalistic Gradle plugin that generates changelog based on commit history and GitHub pull requests/issues☆73Updated last year
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆69Updated this week
- Gradle Plugin for Extracting Dependency Information to send to GitHub☆89Updated last week
- PipelineKt is a kotlin library that generates Jenkinsfiles in a flexible and familiar manner☆61Updated last year
- Main repository for the official Dependency-Track Jenkins plugin☆50Updated this week
- Java/JVM implementation of the package url spec☆41Updated last week
- SonarQube Scanner for Gradle☆196Updated 2 weeks ago
- SonarQube Licensecheck Plugin☆168Updated this week
- Fork of the Dependency-Track API server. It includes various changes necessary to work with Hyades.☆14Updated this week
- Experimental JUnit Jupiter Extension for writing integration tests for Maven plugins/Maven extensions/Maven Core☆90Updated this week