CycloneDX / cyclonedx-webpack-plugin

Related projects ⓘ

Alternatives and complementary repositories for cyclonedx-webpack-plugin

• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆124Updated 3 weeks ago
• CycloneDX / gh-node-module-generatebom
  GitHub action to generate a CycloneDX SBOM for Node.js
  ☆21Updated 4 months ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆95Updated this week
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆74Updated 8 months ago
• CycloneDX / license-scanner
  Utility that provides an API and CLI to identify licenses and legal terms
  ☆43Updated 5 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆221Updated 3 months ago
• interlynk-io / sbomasm
  SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.
  ☆57Updated 3 weeks ago
• spdx / ntia-conformance-checker
  Check SPDX SBOM for NTIA minimum elements
  ☆53Updated last week
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆120Updated this week
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆59Updated this week
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆29Updated 10 months ago
• CycloneDX / cyclonedx-node-npm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
  ☆73Updated this week
• CycloneDX / cyclonedx-javascript-library
  Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.
  ☆15Updated this week
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆68Updated 2 months ago
• openvex / spec
  OpenVEX Specification
  ☆132Updated 4 months ago
• eclipse / jbom
  ☆111Updated 5 months ago
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆61Updated this week
• spdx / spdx-maven-plugin
  Plugin for supporting SPDX in a Maven build.
  ☆44Updated last week
• CycloneDX / cyclonedx-property-taxonomy
  A taxonomy of all official CycloneDX property namespaces and names
  ☆14Updated this week
• scanoss / sbom-workbench
  The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.
  ☆47Updated this week
• jetstack / dependency-track-exporter
  ☆23Updated 3 months ago
• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆32Updated 4 months ago
• nscuro / dtapac
  Audit Dependency-Track findings and policy violations via policy as code
  ☆32Updated this week
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆57Updated 7 months ago
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆19Updated last year
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆135Updated 7 months ago
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆39Updated last year
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆119Updated 5 months ago
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆27Updated 3 months ago
• spdx / spdx-to-osv
  Produce an Open Source Vulnerability JSON file based on information in an SPDX document
  ☆60Updated 5 months ago