eclipse-jbom / jbom
☆113Updated 7 months ago
Alternatives and similar repositories for jbom:
Users that are interested in jbom are comparing it to the libraries listed below
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆66Updated this week
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆84Updated this week
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆62Updated this week
- Utility that provides an API platform for validating, querying and managing BOM data☆99Updated 2 months ago
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆17Updated this week
- Audit Dependency-Track findings and policy violations via policy as code☆32Updated last week
- Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …☆144Updated this week
- Enrich SBOMs with data from third party services☆152Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆224Updated 5 months ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 7 months ago
- Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…☆133Updated this week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- Format agnostic SBOM tooling☆96Updated this week
- PURL to CPE Relationship mapping project.☆82Updated this week
- Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects☆166Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆68Updated last month
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆305Updated last month
- SBOM quality score - Quality metrics for your sboms☆192Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆29Updated last year
- A BOM repository server for distributing CycloneDX BOMs☆75Updated 10 months ago
- Check SPDX SBOM for NTIA minimum elements☆58Updated this week
- A tool to create, transform and attest VEX metadata☆126Updated this week
- ☆100Updated 4 months ago
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆62Updated 8 months ago
- Utility that provides an API and CLI to identify licenses and legal terms☆43Updated 7 months ago
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆62Updated last week
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆327Updated 2 months ago
- Sunshine - SBOM visualization tool☆30Updated this week
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated this week
- A place to systematically store software bill of materials (SBOM) documents.☆44Updated last year