Alternatives and similar repositories for cyclonedx-javascript-library:

Users that are interested in cyclonedx-javascript-library are comparing it to the libraries listed below

• CycloneDX / gh-node-module-generatebom
  GitHub action to generate a CycloneDX SBOM for Node.js
  ☆21Updated last week
• CycloneDX / cyclonedx-node-yarn
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
  ☆21Updated this week
• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆124Updated 2 months ago
• CycloneDX / cyclonedx-node-npm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
  ☆77Updated this week
• cedar-policy / cedar-awesome
  A curated list of awesome Cedar related tools and articles.
  ☆53Updated 2 months ago
• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆32Updated 6 months ago
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆43Updated 7 months ago
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆75Updated 10 months ago
• omnibor / spec
  A draft standard for communicating a cryptographic record of build inputs for software artifacts.
  ☆23Updated 3 months ago
• aws-samples / aws-cdk-cfn-hook
  ☆12Updated 4 months ago
• microsoft / sarif-js-sdk
  JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…
  ☆27Updated 7 months ago
• permitio / opal-fetcher-postgres
  An OPAL custom data fetcher to bring authorization state from Postgres
  ☆21Updated 7 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆151Updated last week
• philips-labs / slsa-provenance-action
  Github Action implementation of SLSA Provenance Generation
  ☆47Updated this week
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆224Updated 5 months ago
• octo-sts / action
  ☆31Updated 2 months ago
• philips-software / SPDXMerge
  SPDX Merge tool
  ☆39Updated 4 months ago
• build-security / opa-express-middleware
  Node.JS Express middleware for working with the Open Policy Agent
  ☆54Updated last year
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆70Updated last week
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆78Updated this week
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆70Updated last year
• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆16Updated this week
• security-alert / security-alert
  [GitHub] A Command Line ToolKit for GitHub Security Alert.
  ☆26Updated 2 months ago
• IBM / gauge
  Measure release insights and recommendations for open-source dependencies. Note: this project is archived.
  ☆11Updated 2 years ago
• latacora / latacora-service-control-policies
  Service Control Policies that have been Latacora recommended all wrapped up in terraform that is easy to attach to an OU.
  ☆22Updated 7 months ago
• cdklabs / node-sscaff
  Stupid scaffolding: copies an entire directory with variable substitution
  ☆20Updated this week
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆175Updated 3 months ago
• cdklabs / awscdk-asset-kubectl
  ☆22Updated this week
• hupe1980 / cdk-threagile
  Agile Threat Modeling as Code
  ☆13Updated 2 years ago
• sigstore / sigstore-js
  Code-signing for npm packages
  ☆161Updated this week