"topic:sbom-tool" — Search

89 results for “topic:sbom-tool”

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

JavaScript4.1k436Updated 13 hours ago

build-toolchrome-extensionfirefox-extensiongrunt-pluginsinsecure-librariesjavascriptsbomsbom-generatorsbom-toolscannersecuritysoftware-composition-analysisvulnerabilitiesvulnerable-libraries

ossf/cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

Python1.6k603Updated 4 hours ago

cvecvssdevsecopshacktoberfestpythonsbomsbom-toolsecuritysecurity-automationsecurity-toolsswreposystem-toolsvulnerabilitiesvulnerability

ARPSyndicate/puncia

Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.

Python66329Updated 1 month ago

arpsyndicatecyclonedxcyclonedx-sbomexploitsbomsbom-toolsubdomainvulnerability

trailofbits/it-depends

A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

Python38522Updated 4 days ago

dependency-analysisdependency-graphhacktoberfesthacktoberfest2021sbomsbom-generatorsbom-toolvulnerability-scanner

CycloneDX/cyclonedx-python

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

Python36291Updated 16 hours ago

bill-of-materialsbomcondacyclonedxenvironmenthacktoberfestowasppackage-urlpippoetrypurlpythonpython3requirementssbomsbom-generatorsbom-toolsoftware-bill-of-materialsspdx

interlynk-io/sbomqs

sbomqs: The Comprehensive SBOM Quality & Compliance Tool

Go27030Updated 1 day ago

cyclonedxdevsecops-pipelinegogolangsbomsbom-examplessbom-qualitysbom-samplessbom-scoresbom-toolsecurity-toolsspdxsupply-chain-security

tiiuae/sbomnix

A suite of utilities to help with software supply chain challenges on nix targets

Python24430Updated 1 day ago

bill-of-materialscpecyclonedxdependenciesnixpurlpythonsbomsbom-generatorsbom-toolsecuritysoftware-bill-of-materialssoftware-supply-chainsoftware-supply-chain-securityspdx-sbomstatic-analysisvulnerability-scanners

snyk/parlay

Enrich SBOMs with data from third party services

Go22034Updated 2 weeks ago

cyclonedxsbomsbom-toolsnyk

CycloneDX/cyclonedx-node-module

creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects

13938Updated 1 day ago

bomcyclonedxdependency-graphmeta-packagemetapackagenodenodejssbomsbom-generatorsbom-toolsoftware-bill-of-materials

trailofbits/deptective

Deptective automatically determines the native dependencies required to run any arbitrary program or command.

Python1290Updated 2 weeks ago

dependency-analysissbomsbom-tool

CycloneDX/sbom-utility

Utility that provides an API platform for validating, querying and managing BOM data

Go12719Updated 1 day ago

bill-of-materialsbomcyclonedxhacktoberfestmbomobomowasppackage-urlpurlsaasbomsbomsbom-qualitysbom-toolsoftware-bill-of-materialsspdxspdx-licensespdx-sbomvdrvex

CycloneDX/cyclonedx-node-npm

Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.

JavaScript12727Updated 3 hours ago

bill-of-materialsbomcyclonedxdependency-graphhacktoberfestnodenodejsnpmowaspsbomsbom-generatorsbom-toolsoftware-bill-of-materials

interlynk-io/sbomasm

sbomasm: The Complete SBOM Management Toolkit

Go10612Updated just now

cyclonedxdevsecopsgogolanggomoduleosssbomsbom-generatorsbom-toolsecurityspdx

sbom-tool/sbom-tools

Semantic SBOM diff and TUI analysis tool. Compares CycloneDX/SPDX files to component changes, dependency shifts, license conflicts, and vulnerabilities.

Rust935Updated 2 hours ago

appseccbomcyber-resilience-actcyclonedxlicence-managementoss-compliancesarifsbomsbom-qualitysbom-toolsecurity-compliancesoftware-supply-chain-securityspdxvexvulnerability-management

relizaio/rearm

ReARM - Release-Level Supply Chain Evidence Platform. SBOMs, xBOMs and every other artifact - stored for 10+ years, versioned and audit-ready.

Java936Updated 6 hours ago

cyclonedxcyclonedx-sbomhardware-supplychainreleaserelease-automationrelease-engineeringrelease-managementsbomsbom-distributionsbom-toolsecuritysecurity-toolssoftware-supply-chainsoftware-supply-chain-securitysoftware-transparencysupply-chainsupply-chain-managementsupply-chain-visibilityvulnerability

spdx/ntia-conformance-checker

Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.

Python8221Updated 14 hours ago

compliancentiasbomsbom-toolsoftware-bill-of-materialsspdx

cbomkit/cbomkit

A toolset for dealing with Cryptography Bill of Materials (CBOM)

Java8030Updated 1 day ago

cbomcbom-toolcbomkitcrypto-scannercryptographic-inventorycryptographycryptography-bompost-quantumpost-quantum-cryptographyquantum-safesbomsbom-tool

CycloneDX/cyclonedx-php-composer

Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects

PHP807Updated 1 week ago

bill-of-materialsbomcomposercomposer-plugincyclonedxdependency-graphhacktoberfestowasppackage-urlphppurlsbomsbom-generatorsbom-toolsoftware-bill-of-materialsspdx

trailofbits/vendetect

A tool to automatically detect copy+pasted and vendored code between repositories

Python756Updated 5 days ago

plagiarism-detectionprogram-analysissbomsbom-tool

cbomkit/sonar-cryptography

This repository contains a SonarQube Plugin that detects cryptographic assets in source code and generates CBOM.

Java5618Updated 20 hours ago

cbomcbom-toolcbomkitcrypto-scannercryptographic-inventorycryptographycryptography-bompost-quantumpost-quantum-cryptographyquantum-safesbomsbom-toolsonarsonarqube

anthonyharrison/sbomdiff

This tool compares two Software Bill of Materials (SBOMs) and reports the differences.

Python428Updated 1 day ago

cyclonedxdevsecopssbomsbom-toolspdxtools

kube-security/orca

This repository contains the container image scanning tool ORCA

Python420Updated 4 months ago

cpepurlsbom-generatorsbom-toolscasoftware-composition-analysis

anthonyharrison/lib4sbom

Library to ingest and generate SBOMs

HTML3919Updated 5 days ago

cyclonedxdevsecopslibrarymlbompythonsbomsbom-generatorsbom-toolspdx

anthonyharrison/sbom2doc

Transform SBOM contents into a formatted document including markdown and PDF formats

Python388Updated 1 month ago

cyclonedxdevsecopsmarkdown-generatorpdf-generationsbomsbom-toolspdx

CycloneDX/cyclonedx-webpack-plugin

Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.

TypeScript3011Updated 1 day ago

bill-of-materialsbomcyclonedxhacktoberfestjavascriptmbomowasppackage-urlpurlsbomsbom-generatorsbom-toolsoftware-bill-of-materialsspdxwebpackwebpack-plugin

interlynk-io/sbomgr

SBOM Search - Context aware search in SBOM repositories

Go293Updated 5 months ago

cyclonedxdevsecopsdevsecops-pipelinegogolanggomodulesbom-toolspdxsupplychain

interlynk-io/sbommv

SBOM Move - Automate build and transfer of SBOMs across systems

Go252Updated 1 month ago

cyclonedxdevsecopsdevsecops-pipelinegogolangsbomsbom-examplessbom-movesbom-toolsecurity-toolssupply-chain-security

SecureStackCo/actions-sbom

A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements, and has the SBOM to show it!

254Updated 8 months ago

automation-testingbill-of-materialsdeploymentdeployment-automationosbomsbom-distributionsbom-generatorsbom-repositorysbom-toolsecuritysecurity-auditsecurity-automation

CycloneDX/cyclonedx-node-yarn

Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.

JavaScript258Updated 1 day ago

bill-of-materialsbomcyclonedxhacktoberfestnodenodejssbomsbom-generatorsbom-toolsoftware-bill-of-materialsyarnyarn-plugin

MedUnes/dtrack-cli

A Go-based CLI tool to automate the upload and lifecycle management of Software Bill of Materials (SBOM) in OWASP Dependency-Track.

Go200Updated 1 week ago

dependency-trackdevopsdevops-platformdevops-toolsdevsecopsdevsecops-best-practicesdevsecops-coe-manageddevsecops-pipelinegogolangowasp-dependencycheckplatform-engineeringsbomsbom-distributionsbom-generatorsbom-releasesbom-toolsecurity-tools

Page 1 of 3