CycloneDX / cyclonedx-javascript-library
Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.
☆15Updated this week
Related projects: ⓘ
- GitHub action to generate a CycloneDX SBOM for Node.js☆20Updated 2 months ago
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆121Updated 2 months ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆71Updated this week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆31Updated 2 months ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.☆18Updated this week
- Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.☆24Updated this week
- Run ORT in your GitHub action workflow to do licensing, security and best practices checks and generate reports/SBOMs☆23Updated 3 months ago
- Enrich SBOMs with data from third party services☆108Updated 3 weeks ago
- Purpose-built security agent for hosted runners☆28Updated last month
- Github Action implementation of SLSA Provenance Generation☆47Updated 2 weeks ago
- Public website cyclonedx.org☆9Updated this week
- Compare vulnerability scanners results (to make them better!)☆14Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆219Updated last month
- Utility that provides an API and CLI to identify licenses and legal terms☆43Updated 3 months ago
- AI-Powered Code Reviews for Best Practices & Security Issues Across Languages☆15Updated last year
- OpenFeature Providers and Hooks for JavaScript☆35Updated this week
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆24Updated 3 months ago
- Stupid scaffolding: copies an entire directory with variable substitution☆20Updated this week
- SPDX Merge tool☆39Updated last week
- Publishes BOMs to Dependency-Track from GitHub Actions☆41Updated 3 weeks ago
- Measure release insights and recommendations for open-source dependencies. Note: this project is archived.☆11Updated last year
- A BOM repository server for distributing CycloneDX BOMs☆73Updated 6 months ago
- OpenVEX Specification☆125Updated 2 months ago
- ☆30Updated 4 months ago
- An SBOM query language and associated utilities☆54Updated 7 months ago
- ☆12Updated 3 weeks ago
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆25Updated 2 weeks ago
- Deploy custom push protections and policies on top of Git☆101Updated this week
- Generates jsii-compatible structs from JSON schemas☆20Updated this week
- Submit SBOMs to GitHub's dependency submission API☆11Updated last year