CycloneDX / cyclonedx-gradle-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
☆160Updated last week
Related projects ⓘ
Alternatives and complementary repositories for cyclonedx-gradle-plugin
- Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Nexus IQ Server.☆77Updated last week
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆298Updated last week
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆81Updated this week
- ☆111Updated 5 months ago
- The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for …☆361Updated this week
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆15Updated this week
- java clients for sigstore☆43Updated this week
- SonarQube Scanner for Gradle☆188Updated this week
- Java/JVM implementation of the package url spec☆22Updated 5 months ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆314Updated 3 weeks ago
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆61Updated this week
- ☆180Updated this week
- Frontend UI for Dependency-Track☆106Updated this week
- GitHub Action for submitting Maven dependencies☆48Updated last month
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆62Updated this week
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆62Updated this week
- Gradle Plugin for Extracting Dependency Information to send to GitHub☆84Updated this week
- Calculates dependencies for a Gradle build-target and submits the list to the Dependency Submission API☆80Updated 9 months ago
- OpenRewrite's Gradle plugin.☆65Updated last week
- Plugin for supporting SPDX in a Maven build.☆44Updated last week
- Basic Snyk CLI plugin for Gradle support☆25Updated this week
- Gradle plugin for PIT Mutation Testing☆221Updated 2 months ago
- Gradle plugin to improve Dependency Conflict Detection and Resolution☆51Updated this week
- SonarQube plugin for Groovy☆60Updated 10 months ago
- Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…☆123Updated this week
- A plugin for generating reports about the licenses of third party software using Gradle☆328Updated 3 months ago
- Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository☆104Updated this week
- A Cloud Native Buildpack that contributes Spring Boot dependency information and slices an application into multiple layers☆178Updated this week
- Community contributions for hooks and reference providers☆27Updated this week
- Utility that provides an API platform for validating, querying and managing BOM data☆95Updated this week