janbiasi / rollup-plugin-sbomLinks
Create SBOMs in CycloneDX format for your Vite or Rollup projects with ease
☆13Updated this week
Alternatives and similar repositories for rollup-plugin-sbom
Users that are interested in rollup-plugin-sbom are comparing it to the libraries listed below
Sorting:
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆88Updated this week
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆128Updated last week
- GitHub action to generate a CycloneDX SBOM for Node.js☆22Updated 4 months ago
- Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.☆26Updated this week
- Extract NPM package licenses. Enhanced and updated fork of Dav Glass' original (but abandoned) license-checker.☆163Updated 2 weeks ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.☆23Updated this week
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆28Updated last year
- Enhanced semantic-release by enabling simplified and automatic package publishing in multi-package repositories☆11Updated 3 months ago
- semantic-release plugin to create a GitHub pullrequest after a release☆15Updated last year
- Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.☆16Updated this week
- Code-signing for npm packages☆162Updated this week
- A simple measure of software dependency freshness.☆99Updated this week
- Yarn Berry plugin to enforce Node version☆60Updated last year
- Check npm dependencies' package.json for license compatibility (aka compliance check) with the current project based on spdx notation and…☆95Updated last year
- Additional ESLint rules for directive comments of ESLint.☆73Updated 3 weeks ago
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆27Updated 6 months ago
- Collection of security best practices for package managers.☆162Updated 2 years ago
- Preview the semantic release notes that would result from merging a Github PR.☆40Updated last year
- JavaScript SDK for OpenFeature☆210Updated this week
- Keycloak Configuration Auditor☆28Updated last week
- Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike☆238Updated 3 weeks ago
- The accessible HTML-Standard☆218Updated this week
- Technical Frontend implementation of the DB UX Design System (Version 2).☆28Updated this week
- ESLint plugin to granularly enforce TypeScript's erasableSyntaxOnly flag. ❎☆42Updated this week
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js PNPM projects.☆15Updated last week
- Rspack plugin for generating asset manifests☆14Updated 5 months ago
- A Github Action that runs `npx update-browserslist-db@latest` on a repository and proposes a pull request to merge updates.☆42Updated this week
- ESLint plugin to detect and stop Trojan Source attacks☆77Updated 2 years ago
- JavaScript implementation of The Update Framework (TUF)☆80Updated this week
- Proof of concept that wraps semantic-release to work with monorepos.☆208Updated last month