CycloneDX / cyclonedx-node-npm
Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
☆71Updated this week
Related projects: ⓘ
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆121Updated 2 months ago
- GitHub action to generate a CycloneDX SBOM for Node.js☆20Updated 2 months ago
- Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.☆15Updated this week
- Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.☆24Updated this week
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.☆18Updated this week
- Audits an NPM package.json file to identify known vulnerabilities.☆223Updated 3 months ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆550Updated this week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆359Updated 2 weeks ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆297Updated this week
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆24Updated 3 months ago
- Check npm dependencies' package.json for license compatibility (aka compliance check) with the current project based on spdx notation and…☆93Updated last year
- Generate a score for your sbom to understand if it will actually be useful.☆219Updated last month
- TSLint security rules☆70Updated 4 years ago
- Collection of security best practices for package managers.☆159Updated last year
- A BOM repository server for distributing CycloneDX BOMs☆73Updated 6 months ago
- Run ORT in your GitHub action workflow to do licensing, security and best practices checks and generate reports/SBOMs☆23Updated 3 months ago
- Frontend UI for Dependency-Track☆100Updated last week
- Snyk extension for Visual Studio Code☆75Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆494Updated this week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆31Updated 2 months ago
- ESLint Plugin focused on common security issues and misconfigurations.☆37Updated 10 months ago
- Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…☆110Updated 3 weeks ago
- PURL to CPE Relationship mapping project.☆69Updated this week
- OpenFeature Providers and Hooks for JavaScript☆35Updated this week
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆466Updated last week
- Improve the security of your API by detecting common vulnerabilities as defined by OWASP and enforced with Spectral.☆67Updated last week
- ESLint security plugin for Node.js☆98Updated 7 months ago
- Orchestrate GitHub Actions Security☆255Updated this week
- Software Component Verification Standard (SCVS)☆133Updated 5 months ago
- SonarQube Licensecheck Plugin☆156Updated this week