CycloneDX / cyclonedx-webpack-plugin
Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
☆24Updated this week
Related projects ⓘ
Alternatives and complementary repositories for cyclonedx-webpack-plugin
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆124Updated 3 weeks ago
- GitHub action to generate a CycloneDX SBOM for Node.js☆21Updated 4 months ago
- Utility that provides an API platform for validating, querying and managing BOM data☆95Updated this week
- A BOM repository server for distributing CycloneDX BOMs☆74Updated 8 months ago
- Utility that provides an API and CLI to identify licenses and legal terms☆43Updated 5 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆221Updated 3 months ago
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆57Updated 3 weeks ago
- Check SPDX SBOM for NTIA minimum elements☆53Updated last week
- Enrich SBOMs with data from third party services☆120Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆59Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆29Updated 10 months ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆73Updated this week
- Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.☆15Updated this week
- A specification for signing methods and formats used by Secure Systems Lab projects.☆68Updated 2 months ago
- OpenVEX Specification☆132Updated 4 months ago
- ☆111Updated 5 months ago
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆61Updated this week
- Plugin for supporting SPDX in a Maven build.☆44Updated last week
- A taxonomy of all official CycloneDX property namespaces and names☆14Updated this week
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆47Updated this week
- ☆23Updated 3 months ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆32Updated 4 months ago
- Audit Dependency-Track findings and policy violations via policy as code☆32Updated this week
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆57Updated 7 months ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆19Updated last year
- Software Component Verification Standard (SCVS)☆135Updated 7 months ago
- Sharing software supply chain security open source projects☆39Updated last year
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆119Updated 5 months ago
- OWASP Foundation Web Respository☆27Updated 3 months ago
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆60Updated 5 months ago