janbiasi / rollup-plugin-sbomLinks
Create SBOMs in CycloneDX format for your Vite or Rollup projects with ease
☆13Updated this week
Alternatives and similar repositories for rollup-plugin-sbom
Users that are interested in rollup-plugin-sbom are comparing it to the libraries listed below
Sorting:
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆134Updated this week
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆99Updated last week
- Extract NPM package licenses. Enhanced and updated fork of Dav Glass' original (but abandoned) license-checker.☆174Updated 4 months ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.☆23Updated this week
- semantic-release plugin to create a GitHub pullrequest after a release☆17Updated last year
- GitHub action to generate a CycloneDX SBOM for Node.js☆22Updated 2 months ago
- Check npm dependencies' package.json for license compatibility (aka compliance check) with the current project based on spdx notation and…☆95Updated 2 years ago
- Preview the semantic release notes that would result from merging a Github PR.☆41Updated last year
- Collection of security best practices for package managers.☆163Updated 2 years ago
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆29Updated last year
- A semantic-release plugin for replacing text in files with the current release version.☆116Updated last year
- Manage third-party license compliance in your webpack build☆97Updated this week
- 📦🔖 A GitHub Action for publishing JavaScript Actions☆99Updated 6 months ago
- semantic-release plugin to back-merge a release into a develop branch☆62Updated last year
- Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.☆27Updated this week
- GitHub Action to combine multiple PRs into a single one☆135Updated 6 months ago
- GitHub Actions toolkit to monitor a repository and run testcases☆136Updated last month
- Add changelogs to PRs and use them to determine the version of npm packages☆23Updated 2 years ago
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆28Updated last month
- JavaScript SDK for OpenFeature☆222Updated this week
- Enhanced semantic-release by enabling simplified and automatic package publishing in multi-package repositories☆14Updated 6 months ago
- Official GitHub Action for OpenSSF Scorecard.☆332Updated last week
- ☆57Updated this week
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆403Updated last week
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆425Updated this week
- Code-signing for npm packages☆167Updated this week
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js PNPM projects.☆19Updated last week
- semantic-release-plus monorepo to build and publish all semantic-release related repositories☆74Updated last year
- A simple measure of software dependency freshness.☆109Updated this week
- A GitHub action that takes ESLint results from a JSON file and adds them as annotated pull request comments☆111Updated 11 months ago