SBOM-Community/SBOM-Generation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/SBOM-Community/SBOM-Generation)

SBOM-Community / SBOM-Generation

Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team

☆33

Alternatives and similar repositories for SBOM-Generation

Users that are interested in SBOM-Generation are comparing it to the libraries listed below

Sorting:

interlynk-io / sbomex
View on GitHub
SBOM Explorer - Discover and pull public SBOMs
☆20May 23, 2025Updated 9 months ago
interlynk-io / sbommv
View on GitHub
SBOM Move - Automate build and transfer of SBOMs across systems
☆25Feb 23, 2026Updated last week
spdx / ntia-conformance-checker
View on GitHub
Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.
☆81Feb 20, 2026Updated last week
oss-review-toolkit / ort-config
View on GitHub
Open source package corrections, policy rules and other configuration files for the OSS Review Toolkit.
☆21Updated this week
ossf / sbom-everywhere
View on GitHub
Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
☆110Updated this week
org-metaeffekt / metaeffekt-universe
View on GitHub
Project providing insights on the metaeffekt license database.
☆12Feb 24, 2026Updated last week
interlynk-io / sbomasm
View on GitHub
sbomasm: The Complete SBOM Management Toolkit
☆105Updated this week
interlynk-io / sbomqs
View on GitHub
sbomqs: The Comprehensive SBOM Quality & Compliance Tool
☆269Updated this week
spdx / spdx-3-model
View on GitHub
The model for the information captured in SPDX version 3 standard.
☆98Updated this week
snyk / parlay
View on GitHub
Enrich SBOMs with data from third party services
☆220Feb 11, 2026Updated 2 weeks ago
swinslow / cmake-spdx
View on GitHub
Create SPDX documents automatically with CMake build info
☆31May 2, 2021Updated 4 years ago
aibom-squad / SBOM-for-AI-Use-Cases
View on GitHub
Repository for on-going work as part of the SBOM for AI Tiger Team effort.
☆42Jul 28, 2025Updated 7 months ago
OpenChain-Project / Telco-WG
View on GitHub
This is the OpenChain Telco Work Group
☆19Dec 3, 2025Updated 3 months ago
CERTCC / SBOM
View on GitHub
Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
☆66Apr 8, 2024Updated last year
CycloneDX / sbom-utility
View on GitHub
Utility that provides an API platform for validating, querying and managing BOM data
☆127Jan 2, 2026Updated 2 months ago
sw360 / capycli
View on GitHub
CaPyCLI - Python scripts for software license compliance automation with SW360
☆22Feb 12, 2026Updated 2 weeks ago
mitre / hipcheck
View on GitHub
Automatically assess and score software repositories for supply chain risk.
☆121Feb 16, 2026Updated 2 weeks ago
spdx / tools-java
View on GitHub
SPDX Command Line Tools using the Spdx-Java-Library
☆88Feb 18, 2026Updated last week
wolfi-dev / community
View on GitHub
Documents and tools powering the Wolfi OS community
☆24Sep 26, 2025Updated 5 months ago
OpenChain-Project / Security-Assurance-Specification
View on GitHub
☆25Nov 8, 2024Updated last year
spdx / spdx-examples
View on GitHub
Examples of SPDX files for software combinations
☆143Nov 15, 2025Updated 3 months ago
protobom / sbom-convert
View on GitHub
Example CLI project to demo API architecture and protobom library
☆26Updated this week
CycloneDX / transparency-exchange-api
View on GitHub
A standard API specification for exchanging supply chain artifacts and intelligence
☆100Feb 20, 2026Updated last week
CycloneDX / cyclonedx-python-lib
View on GitHub
Functionality and DataModels of OWASP CycloneDX for Python
☆102Updated this week
protobom / protobom
View on GitHub
A universal SBOM representation in protocol buffers
☆316Feb 18, 2026Updated last week
siemens / continuous-clearing
View on GitHub
The Continuous Clearing Tool scans and collects third-party open-source components used in projects based on NPM, NuGet, Debian, Maven, P…
☆31Updated this week
CycloneDX / specification
View on GitHub
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
☆485Updated this week
eBay / sbom-scorecard
View on GitHub
Generate a score for your sbom to understand if it will actually be useful.
☆238Aug 13, 2024Updated last year
OWASP / www-project-operational-technology-top-10
View on GitHub
OWASP Foundation web repository
☆21Jan 7, 2026Updated last month
interlynk-io / sbomgr
View on GitHub
SBOM Search - Context aware search in SBOM repositories
☆29Nov 24, 2025Updated 3 months ago
spdx / spdx-spec
View on GitHub
The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
☆359Updated this week
orcwg / cra-hub
View on GitHub
Everything you ever wanted to know about the CRA and its implementation
☆155Feb 16, 2026Updated 2 weeks ago
spdx / spdx-online-tools
View on GitHub
Source for the website providing online SPDX tools
☆71Dec 28, 2025Updated 2 months ago
spdx / meetings
View on GitHub
This repository stores meetings minutes for the SPDX project
☆39Feb 17, 2026Updated 2 weeks ago
DependencyTrack / hyades
View on GitHub
Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
☆99Updated this week
spdx / cdx2spdx
View on GitHub
Utility that converts SBOM documents from CycloneDX to SPDX
☆33Jan 19, 2024Updated 2 years ago
spdx / tools-python
View on GitHub
A Python library to parse, validate and create SPDX documents.
☆238Jan 16, 2026Updated last month
sasquatch678 / A-Painted-World
View on GitHub
Readme for the Oblivion Wabbajack list A Painted World
☆13Feb 22, 2026Updated last week
scanoss / scanoss.py
View on GitHub
The SCANOSS python package providing a simple, easy to consume library for interacting with SCANOSS APIs/Engine.
☆39Feb 24, 2026Updated last week