whitesource-ps / ws-sbom-generatorLinks
WS SBOM Report Generator in SPDX or CycloneDX format
☆31Updated last year
Alternatives and similar repositories for ws-sbom-generator
Users that are interested in ws-sbom-generator are comparing it to the libraries listed below
Sorting:
- A BOM repository server for distributing CycloneDX BOMs☆77Updated 2 months ago
- Prevent leaks with gitleaks, and use tests to validate☆32Updated 3 months ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- SBOM Search - Context aware search in SBOM repositories☆28Updated this week
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆64Updated last year
- ☆101Updated 11 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆232Updated last year
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆234Updated last week
- Utility that provides an API platform for validating, querying and managing BOM data☆118Updated 2 weeks ago
- Utility that provides an API and CLI to identify licenses and legal terms☆52Updated last month
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 7 months ago
- A taxonomy of all official CycloneDX property namespaces and names☆18Updated last week
- An SBOM query language and associated utilities☆54Updated last year
- Github Action implementation of SLSA Provenance Generation☆50Updated this week
- Enrich SBOMs with data from third party services☆190Updated last week
- sbomasm: The Complete SBOM Management Toolkit☆77Updated last week
- Generate SBOMs with gh CLI☆191Updated 3 months ago
- A light-weight app to audit and inventory large codebases for open source license compliance.☆66Updated this week
- vexctl is a tool to attest VEX impact statements☆45Updated 2 years ago
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆33Updated 2 years ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆101Updated this week
- Securing Alice's, Bob's and Carl's software supply chain using in-toto☆94Updated 3 weeks ago
- Automating Compliance Tooling Project☆21Updated 3 years ago
- Machine-readable specification for the attestation of security-relevant data.☆61Updated last month
- ☆65Updated last year
- SPDX Merge tool☆47Updated 4 months ago
- A tool to check the security settings of Github Organizations.☆72Updated 2 years ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated 2 years ago
- Examples of SPDX files for software combinations☆135Updated 2 months ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆100Updated last month