janbiasi / rollup-plugin-sbomLinks
Create SBOMs in CycloneDX format for your Vite or Rollup projects with ease
☆17Updated this week
Alternatives and similar repositories for rollup-plugin-sbom
Users that are interested in rollup-plugin-sbom are comparing it to the libraries listed below
Sorting:
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆135Updated 2 weeks ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆109Updated last week
- Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.☆28Updated this week
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.☆24Updated this week
- Check npm dependencies' package.json for license compatibility (aka compliance check) with the current project based on spdx notation and…☆95Updated 2 years ago
- GitHub action to generate a CycloneDX SBOM for Node.js☆22Updated 5 months ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js PNPM projects.☆22Updated 2 weeks ago
- Extract NPM package licenses. Enhanced and updated fork of Dav Glass' original (but abandoned) license-checker.☆182Updated 6 months ago
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆429Updated 3 weeks ago
- Frontend UI for Dependency-Track☆133Updated last week
- Preview the semantic release notes that would result from merging a Github PR.☆42Updated last year
- Official GitHub Action for OpenSSF Scorecard.☆339Updated this week
- Fork of the Dependency-Track API server. It includes various changes necessary to work with Hyades.☆18Updated last week
- Collection of security best practices for package managers.☆164Updated 3 years ago
- Enhanced semantic-release by enabling simplified and automatic package publishing in multi-package repositories☆15Updated 9 months ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆850Updated this week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆449Updated this week
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆93Updated 2 weeks ago
- Add changelogs to PRs and use them to determine the version of npm packages☆22Updated 2 years ago
- Code-signing for npm packages☆172Updated this week
- Public website cyclonedx.org☆12Updated 11 months ago
- Mend Renovate Documentation & Examples☆263Updated this week
- Enrich SBOMs with data from third party services☆202Updated 3 months ago
- A BOM repository server for distributing CycloneDX BOMs☆85Updated 5 months ago
- A development and test oriented OAuth2 mock server☆221Updated last week
- GitHub Actions toolkit to monitor a repository and run testcases☆137Updated 4 months ago
- semantic-release-plus monorepo to build and publish all semantic-release related repositories☆74Updated last year
- Manage third-party license compliance in your webpack build☆99Updated last week
- A simple measure of software dependency freshness.☆109Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆95Updated last month