CycloneDX/cyclonedx-python external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CycloneDX/cyclonedx-python

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CycloneDX/cyclonedx-python)

Close

CycloneDX / cyclonedx-pythonView on GitHubMore

• External links
• Readme badge

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

☆362Mar 14, 2026Updated this week

Alternatives and similar repositories for cyclonedx-python

Users that are interested in cyclonedx-python are comparing it to the libraries listed below

• CycloneDX / cyclonedx-python-lib

  View on GitHub
  Functionality and DataModels of OWASP CycloneDX for Python
  ☆103Mar 13, 2026Updated last week
• CycloneDX / cyclonedx-node-module

  View on GitHub
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆140Updated this week
• CycloneDX / gh-python-generate-sbom

  View on GitHub
  GitHub action to generate a CycloneDX SBOM for Python
  ☆14Jan 10, 2025Updated last year
• CycloneDX / cyclonedx-cli

  View on GitHub
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆470Feb 10, 2026Updated last month
• CycloneDX / specification

  View on GitHub
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆487Updated this week
• CycloneDX / gh-dotnet-generate-sbom

  View on GitHub
  GitHub action to generate a CycloneDX SBOM for .NET
  ☆12Jul 15, 2025Updated 8 months ago
• CycloneDX / sbom-utility

  View on GitHub
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆128Jan 2, 2026Updated 2 months ago
• spdx / tools-python

  View on GitHub
  A Python library to parse, validate and create SPDX documents.
  ☆240Mar 13, 2026Updated last week
• DependencyTrack / dependency-track

  View on GitHub
  Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…
  ☆3,666Updated this week
• CycloneDX / bom-examples

  View on GitHub
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆218Oct 21, 2025Updated 4 months ago
• sonatype-nexus-community / jake

  View on GitHub
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆132Jan 22, 2026Updated last month
• CycloneDX / cyclonedx-maven-plugin

  View on GitHub
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆361Jan 23, 2026Updated last month
• aibom-squad / SBOM-for-AI-Use-Cases

  View on GitHub
  Repository for on-going work as part of the SBOM for AI Tiger Team effort.
  ☆42Jul 28, 2025Updated 7 months ago
• cdxgen / cdxgen

  View on GitHub
  Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…
  ☆919Updated this week
• interlynk-io / sbomasm

  View on GitHub
  sbomasm: The Complete SBOM Management Toolkit
  ☆106Updated this week
• interlynk-io / sbomqs

  View on GitHub
  sbomqs: The Comprehensive SBOM Quality & Compliance Tool
  ☆271Updated this week
• anthonyharrison / sbom4python

  View on GitHub
  A tool to generate a SBOM (Software Bill of Materials) for an installed Python module
  ☆37Updated this week
• CycloneDX / cyclonedx-go

  View on GitHub
  Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)
  ☆106Feb 26, 2026Updated 3 weeks ago
• CycloneDX / gh-node-module-generatebom

  View on GitHub
  GitHub action to generate a CycloneDX SBOM for Node.js
  ☆22Jul 11, 2025Updated 8 months ago
• OWASP / Software-Component-Verification-Standard

  View on GitHub
  Software Component Verification Standard (SCVS)
  ☆157Apr 1, 2025Updated 11 months ago
• CycloneDX / cyclonedx-gradle-plugin

  View on GitHub
  Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
  ☆221Mar 13, 2026Updated last week
• CycloneDX / cyclonedx-core-java

  View on GitHub
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆106Mar 12, 2026Updated last week
• anchore / syft

  View on GitHub
  CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  ☆8,510Updated this week
• CycloneDX / cyclonedx-php-composer

  View on GitHub
  Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
  ☆80Feb 28, 2026Updated 2 weeks ago
• opensbom-generator / spdx-sbom-generator

  View on GitHub
  Support CI generation of SBOMs via golang tooling.
  ☆424Jan 13, 2025Updated last year
• package-url / purl-spec

  View on GitHub
  A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
  ☆992Mar 11, 2026Updated last week
• advanced-security / gh-sbom

  View on GitHub
  Generate SBOMs with gh CLI
  ☆199May 30, 2025Updated 9 months ago
• scanoss / purl2cpe

  View on GitHub
  PURL to CPE Relationship mapping project.
  ☆111Updated this week
• CycloneDX / cyclonedx-node-yarn

  View on GitHub
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
  ☆25Updated this week
• jetstack / dependency-track-exporter

  View on GitHub
  ☆25Aug 3, 2024Updated last year
• CycloneDX / cyclonedx-property-taxonomy

  View on GitHub
  A taxonomy of all official CycloneDX property namespaces and names
  ☆21Mar 2, 2026Updated 2 weeks ago
• owasp-dep-scan / depscan-bin

  View on GitHub
  Binary builds for dep-scan - The Dependency Scanner
  ☆10Apr 1, 2024Updated last year
• devops-kung-fu / bomber

  View on GitHub
  Scans Software Bill of Materials (SBOMs) for security vulnerabilities
  ☆606Feb 10, 2026Updated last month
• workleap / azure-pipelines-dependency-track

  View on GitHub
  Azure DevOps extension for submitting BOM reports to Dependency-Track
  ☆21Feb 17, 2025Updated last year
• AppThreat / vulnerability-db

  View on GitHub
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…
  ☆137Mar 10, 2026Updated last week
• CycloneDX / license-scanner

  View on GitHub
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆52Jul 11, 2025Updated 8 months ago
• aboutcode-org / purldb

  View on GitHub
  Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…
  ☆61Updated this week
• DependencyTrack / gh-upload-sbom

  View on GitHub
  Publishes BOMs to Dependency-Track from GitHub Actions
  ☆62Oct 7, 2024Updated last year
• CycloneDX / cyclonedx-webpack-plugin

  View on GitHub
  Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
  ☆30Mar 9, 2026Updated last week