Alternatives and similar repositories for cyclonedx-node-yarn:

Users that are interested in cyclonedx-node-yarn are comparing it to the libraries listed below

• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆126Updated last month
• CycloneDX / cyclonedx-javascript-library
  Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.
  ☆16Updated this week
• CycloneDX / gh-node-module-generatebom
  GitHub action to generate a CycloneDX SBOM for Node.js
  ☆21Updated 2 months ago
• CycloneDX / cyclonedx-node-npm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
  ☆82Updated this week
• CycloneDX / cyclonedx-webpack-plugin
  Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
  ☆26Updated this week
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆43Updated 9 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆161Updated last month
• DependencyTrack / gh-upload-sbom
  Publishes BOMs to Dependency-Track from GitHub Actions
  ☆52Updated 5 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆227Updated 7 months ago
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆77Updated last year
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆104Updated 4 months ago
• IBM / gauge
  Measure release insights and recommendations for open-source dependencies. Note: this project is archived.
  ☆11Updated 2 years ago
• CycloneDX / cyclonedx-cli
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆343Updated 4 months ago
• security-alert / security-alert
  [GitHub] A Command Line ToolKit for GitHub Security Alert.
  ☆27Updated 4 months ago
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆89Updated this week
• stoplightio / spectral-owasp-ruleset
  Improve the security of your API by detecting common vulnerabilities as defined by OWASP and enforced with Spectral.
  ☆75Updated 4 months ago
• interlynk-io / sbomasm
  SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.
  ☆66Updated this week
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆84Updated this week
• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆33Updated last month
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆17Updated 3 months ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆389Updated last week
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆79Updated this week
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆116Updated this week
• stoplightio / vscode-spectral
  VS Code extension bringing the awesome Spectral JSON/YAML linter with OpenAPI/AsyncAPI support
  ☆73Updated 3 weeks ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆74Updated last week
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆278Updated this week
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆133Updated last week
• microsoft / sarif-js-sdk
  JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…
  ☆27Updated 10 months ago
• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆16Updated last week
• anchore / grype-db
  ☆45Updated this week