CycloneDX/sbom-utility

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CycloneDX/sbom-utility)

CycloneDX / sbom-utility

Utility that provides an API platform for validating, querying and managing BOM data

☆127

Alternatives and similar repositories for sbom-utility

Users that are interested in sbom-utility are comparing it to the libraries listed below

Sorting:

CycloneDX / license-scanner
View on GitHub
Utility that provides an API and CLI to identify licenses and legal terms
☆52Jul 11, 2025Updated 7 months ago
interlynk-io / sbomqs
View on GitHub
sbomqs: The Comprehensive SBOM Quality & Compliance Tool
☆269Updated this week
interlynk-io / sbomgr
View on GitHub
SBOM Search - Context aware search in SBOM repositories
☆29Nov 24, 2025Updated 3 months ago
interlynk-io / sbomasm
View on GitHub
sbomasm: The Complete SBOM Management Toolkit
☆105Updated this week
spdx / ntia-conformance-checker
View on GitHub
Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.
☆81Feb 20, 2026Updated last week
CycloneDX / cyclonedx-cli
View on GitHub
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
☆461Feb 10, 2026Updated 2 weeks ago
interlynk-io / sbomex
View on GitHub
SBOM Explorer - Discover and pull public SBOMs
☆20May 23, 2025Updated 9 months ago
snyk / parlay
View on GitHub
Enrich SBOMs with data from third party services
☆220Feb 11, 2026Updated 2 weeks ago
nyph-infosec / daggerboard
View on GitHub
☆102Sep 27, 2024Updated last year
CycloneDX / specification
View on GitHub
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
☆485Updated this week
eBay / sbom-scorecard
View on GitHub
Generate a score for your sbom to understand if it will actually be useful.
☆238Aug 13, 2024Updated last year
devops-kung-fu / bomber
View on GitHub
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
☆603Feb 10, 2026Updated 2 weeks ago
CycloneDX / transparency-exchange-api
View on GitHub
A standard API specification for exchanging supply chain artifacts and intelligence
☆100Feb 20, 2026Updated last week
spdx / tools-java
View on GitHub
SPDX Command Line Tools using the Spdx-Java-Library
☆88Feb 18, 2026Updated last week
cdxgen / cdxgen
View on GitHub
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…
☆908Updated this week
SBOM-Community / SBOM-Generation
View on GitHub
Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team
☆33Feb 2, 2026Updated last month
chainguard-sandbox / bom-shelter
View on GitHub
A place to systematically store software bill of materials (SBOM) documents.
☆50Jun 1, 2023Updated 2 years ago
IBM / gauge
View on GitHub
Measure release insights and recommendations for open-source dependencies. Note: this project is archived.
☆10Jan 3, 2023Updated 3 years ago
CycloneDX / cyclonedx-python
View on GitHub
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
☆360Updated this week
madpah / vexy
View on GitHub
Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
☆23Jan 19, 2025Updated last year
OLSV-oss / OSSLicenseSimpleViewer
View on GitHub
OSS License Simple Viewer is a simple Excel-based tool as OSS license reference for engineers.
☆14Nov 20, 2020Updated 5 years ago
CycloneDX / sbom-combiner
View on GitHub
Lockheed Martin developed utility to combine multiple CycloneDX SBOMs
☆13Jan 16, 2023Updated 3 years ago
bomctl / bomctl
View on GitHub
Format agnostic SBOM tooling
☆132Nov 20, 2025Updated 3 months ago
spdx / cdx2spdx
View on GitHub
Utility that converts SBOM documents from CycloneDX to SPDX
☆33Jan 19, 2024Updated 2 years ago
CycloneDX / cyclonedx-dotnet-library
View on GitHub
.NET library to consume and produce CycloneDX Software Bill of Materials (SBOM)
☆26Feb 10, 2026Updated 2 weeks ago
awesomeSBOM / awesome-sbom
View on GitHub
A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles
☆568May 20, 2025Updated 9 months ago
interlynk-io / sbommv
View on GitHub
SBOM Move - Automate build and transfer of SBOMs across systems
☆25Feb 23, 2026Updated last week
spdx / tools-golang
View on GitHub
Collection of Go packages to work with SPDX files
☆159Updated this week
CycloneDX / cyclonedx-web-tool
View on GitHub
A web based tool for working with CycloneDX BOMs
☆44Feb 10, 2026Updated 2 weeks ago
openvex / spec
View on GitHub
OpenVEX Specification
☆168Jan 16, 2026Updated last month
ossf / sbom-everywhere
View on GitHub
Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
☆110Feb 11, 2026Updated 2 weeks ago
advanced-security / gh-sbom
View on GitHub
Generate SBOMs with gh CLI
☆199May 30, 2025Updated 9 months ago
opossum-tool / OpossumUI
View on GitHub
A light-weight app to audit and inventory large codebases for open source license compliance.
☆72Updated this week
CycloneDX / bom-examples
View on GitHub
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
☆218Oct 21, 2025Updated 4 months ago
CycloneDX / cyclonedx-property-taxonomy
View on GitHub
A taxonomy of all official CycloneDX property namespaces and names
☆21Jan 15, 2026Updated last month
nttcom / threatconnectome
View on GitHub
Vulnerability Management with SBOM
☆19Updated this week
anthonyharrison / lib4vex
View on GitHub
Library to ingest and generate VEX documents
☆19Feb 19, 2026Updated last week
CERTCC / SBOM
View on GitHub
Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
☆66Apr 8, 2024Updated last year
OWASP / Software-Component-Verification-Standard
View on GitHub
Software Component Verification Standard (SCVS)
☆155Apr 1, 2025Updated 11 months ago