A tool that takes two or more micro SBOMs and composes them into one distributable SBOM
☆23Mar 23, 2023Updated 2 years ago
Alternatives and similar repositories for sbom-composer
Users that are interested in sbom-composer are comparing it to the libraries listed below
Sorting:
- Transparenty Immutable Container Image Tags☆20Jul 5, 2023Updated 2 years ago
- A tool which tries to map CVEs from NVD to packages in supported ecosystems (Maven, NPM, PyPI).☆12Jul 12, 2025Updated 8 months ago
- ☆11Apr 18, 2022Updated 3 years ago
- A utility to generate SPDX-compliant Bill of Materials manifests☆446Updated this week
- NVD API 2.0 for python☆12Sep 26, 2024Updated last year
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆72Updated this week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Apr 17, 2023Updated 2 years ago
- Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners☆14Mar 13, 2026Updated last week
- NestJs module to easily implement event driven architecture using RxJs in any NestJs project☆11Apr 1, 2022Updated 3 years ago
- An SBOM query language and associated utilities☆55Jan 22, 2024Updated 2 years ago
- rpm2cpe translates package names to CPE values.☆11Oct 25, 2017Updated 8 years ago
- Reports on the licenses used by a Go package and its dependencies.☆11Jul 24, 2024Updated last year
- Prepends project files with given template.☆18Mar 4, 2025Updated last year
- Command line tool for diffing go module dependency changes between versions 📔☆32Feb 21, 2024Updated 2 years ago
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Jan 27, 2025Updated last year
- A docker CLI plugin for verifying signed attestations on images☆13Oct 27, 2023Updated 2 years ago
- Mounts as file descriptors are useful☆13May 21, 2021Updated 4 years ago
- Provides info on historical versions of Nix packages☆13Oct 23, 2025Updated 4 months ago
- Press kit / Media pack for OpenFaaS☆44May 31, 2022Updated 3 years ago
- Go module to generate and transform VEX documents☆55Updated this week
- Python library for Fortify Software Security Center (SSC) RESTFul API☆21Apr 14, 2025Updated 11 months ago
- The most advanced multisig bitcoin wallet optimized for collaboration.☆11Mar 13, 2026Updated last week
- Monorepo for All Things Microservices YouTube Series☆13Dec 27, 2022Updated 3 years ago
- ☆13Feb 11, 2026Updated last month
- Langevin and Hybrid Quantum Monte Carlo Simulations of Electron-Phonon Models☆13Aug 15, 2022Updated 3 years ago
- Execute codes From XSLT☆16Dec 28, 2016Updated 9 years ago
- nestjs starter☆15Sep 11, 2025Updated 6 months ago
- JavaScript implementation of the package url spec☆28Jan 28, 2026Updated last month
- 🍛 TypeScript Options-object Currying☆13Dec 9, 2019Updated 6 years ago
- Utility that provides an API platform for validating, querying and managing BOM data☆128Jan 2, 2026Updated 2 months ago
- ☆10Aug 29, 2018Updated 7 years ago
- PHP implementation of the PageRank algorithm☆13Dec 4, 2019Updated 6 years ago
- ☆31Updated this week
- Ubuntu Hardening Bosh Release☆13Mar 5, 2026Updated 2 weeks ago
- Support for mocking Egeria API for UI dev test☆12Apr 18, 2023Updated 2 years ago
- Envoy Oauth2 Filter helloworld☆10Dec 1, 2025Updated 3 months ago
- Kubernetes Crd Conversion Webhook Example☆16Aug 30, 2019Updated 6 years ago
- Simple example for using an in-cluster BuildKit instance for container builds☆19Mar 22, 2019Updated 7 years ago
- A GitHub Action to update the changelog and bump the version of your project for Dependabot pull requests.☆18Updated this week