CycloneDX / cyclonedx-node-yarn
Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
☆21Updated this week
Alternatives and similar repositories for cyclonedx-node-yarn:
Users that are interested in cyclonedx-node-yarn are comparing it to the libraries listed below
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆126Updated last month
- Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.☆16Updated this week
- GitHub action to generate a CycloneDX SBOM for Node.js☆21Updated 2 months ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆82Updated this week
- Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.☆26Updated this week
- Utility that provides an API and CLI to identify licenses and legal terms☆43Updated 9 months ago
- Enrich SBOMs with data from third party services☆161Updated last month
- Publishes BOMs to Dependency-Track from GitHub Actions☆52Updated 5 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆227Updated 7 months ago
- A BOM repository server for distributing CycloneDX BOMs☆77Updated last year
- Utility that provides an API platform for validating, querying and managing BOM data☆104Updated 4 months ago
- Measure release insights and recommendations for open-source dependencies. Note: this project is archived.☆11Updated 2 years ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆343Updated 4 months ago
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆27Updated 4 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆89Updated this week
- Improve the security of your API by detecting common vulnerabilities as defined by OWASP and enforced with Spectral.☆75Updated 4 months ago
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆66Updated this week
- PURL to CPE Relationship mapping project.☆84Updated this week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆33Updated last month
- Report on quality of SBOM contents☆17Updated 3 months ago
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆389Updated last week
- Python implementation of OWASP CycloneDX☆79Updated this week
- Throw a tag at it and it comes back with a checksum.☆116Updated this week
- VS Code extension bringing the awesome Spectral JSON/YAML linter with OpenAPI/AsyncAPI support☆73Updated 3 weeks ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆74Updated last week
- Orchestrate GitHub Actions Security☆278Updated this week
- A tool to create, transform and attest VEX metadata☆133Updated last week
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆27Updated 10 months ago
- Compare vulnerability scanners results (to make them better!)☆16Updated last week
- ☆45Updated this week