SBOM support
#7340
Replies: 3 comments 3 replies
-
There is https://github.com/lightbend/sbt-bill-of-materials which is what used in pekko |
Beta Was this translation helpful? Give feedback.
2 replies
-
Are we talking about creating (S)BOM or consuming it as part of resolution? |
Beta Was this translation helpful? Give feedback.
1 reply
-
https://github.com/siculo/sbt-bom is also the only implementation I've seen as well. If the sbt community has questions on CycloneDX, please reach out. Our Slack is quite active should anyone want to dive in. https://cyclonedx.org/slack/invite |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
The EU's CRA and equivalent measures in the US and elsewhere will make SBOMs very important.
https://www.cybeats.com/blog/why-sboms-are-critical-to-complying-with-the-eu-cyber-resilience-act
The only sbt support that I have seen is https://github.com/siculo/sbt-bom but this is quite incomplete.
Is there any interest in creating a community SBOM solution for sbt users?
Beta Was this translation helpful? Give feedback.
All reactions