#

cyclonedx

Here are 33 public repositories matching this topic...

nexB / scancode-toolkit

🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase, the Google Summer of Code, Azure credits, nexB and others generous sponsors!

Updated Jul 17, 2024
Python

owasp-dep-scan / dep-scan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

security-audit containers dependency-analysis vex compliance cve sca vulnerability-scanners security-tools devsecops reachability-analysis sbom cyclonedx supply-chain-security risk-audit dependency-audit

Updated Jul 17, 2024
Python

owasp-dep-scan / blint

BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generator for binaries.

binary malware fuzzing supply-chain-analytics sbom cyclonedx supply-chain-security depscan

Updated Jul 16, 2024
Python

cyclonedx-python

CycloneDX / cyclonedx-python

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

python environment poetry conda owasp python3 pip bom spdx requirements bill-of-materials software-bill-of-materials purl package-url sbom cyclonedx sbom-generator sbom-tool

Updated Jul 13, 2024
Python

tiiuae / sbomnix

A suite of utilities to help with software supply chain challenges on nix targets

python security nix static-analysis dependencies cpe software-supply-chain vulnerability-scanners bill-of-materials software-bill-of-materials purl sbom cyclonedx sbom-generator software-supply-chain-security spdx-sbom sbom-tool

Updated May 30, 2024
Python

nexB / scancode.io

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

docker open-source virtual-machine vulnerabilities license spdx sca scancode software-composition-analysis purl package-url cyclonedx foss-compliance

Updated Jul 17, 2024
Python

cyclonedx-python-lib

CycloneDX / cyclonedx-python-lib

Python implementation of OWASP CycloneDX

python library owasp bom vex spdx attestation bill-of-materials software-bill-of-materials purl package-url sbom software-library cyclonedx obom mbom saasbom cbom

Updated Jul 14, 2024
Python

anthonyharrison / sbom4python

A tool to generate a SBOM (Software Bill of Materials) for an installed Python module

python security spdx devsecops sbom cyclonedx sbom-generator

Updated Mar 25, 2024
Python

cyclonedx-conan

CycloneDX / cyclonedx-conan

Creates CycloneDX Software Bill of Materials (SBOM) documents for C/C++ projects using Conan

c cpp owasp bom vex spdx purl sbom cyclonedx sbom-generator obom mbom saasbom

Updated Sep 27, 2023
Python

anthonyharrison / sbomdiff

This tool compares two Software Bill of Materials (SBOMs) and reports the differences.

tools spdx devsecops sbom cyclonedx sbom-tool

Updated Mar 25, 2024
Python

nexB / dejacode

Automate open source license compliance and ensure software supply chain integrity

open-source vulnerabilities license spdx sca scancode purl package-url cyclonedx foss-compliance

Updated Jul 17, 2024
Python

madpah / vexy

Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents

python vex cyclonedx vulnerability-exchange vulnerability-exploitability

Updated Sep 21, 2023
Python

Surfactant

LLNL / Surfactant

Modular framework for SBOM generation that gathers file information and analyzes dependencies

python tool static-analysis dependency-analysis dependency-graph python3 dependencies spdx hacktoberfest software-composition-analysis software-bill-of-materials sbom cyclonedx sbom-generator

Updated Jul 15, 2024
Python

anthonyharrison / lib4sbom

Library to ingest and generate SBOMs

python library spdx devsecops sbom cyclonedx sbom-generator sbom-tool mlbom

Updated Jul 13, 2024
Python

anthonyharrison / sbom2doc

Transform SBOM contents into a formatted document including markdown and PDF formats

pdf-generation spdx devsecops markdown-generator sbom cyclonedx sbom-tool

Updated May 23, 2024
Python

morpheuslord / Startup-SBOM

A tool to reverse engineer and inspect the RPM and APT databases to list all the packages along with executables, service and versions.

linux reverse-engineering startup-script startup linux-app apt-packages sbom rpm-packa cyclonedx package-resolver sbom-tool

Updated May 11, 2024
Python

anthonyharrison / lib4vex

Library to ingest and generate VEX documents

python library vex vulnerabilities devsecops csaf sbom cyclonedx openvex

Updated May 6, 2024
Python

anthonyharrison / distro2SBOM

Generates SBOM files from system packaging information

python debian ubuntu redhat spdx devsecops sbom cyclonedx sbom-generator

Updated May 6, 2024
Python

productaize / bogrod

Manage SBOM and VEX like source code

security vex vulnerabilities release-notes release-automation sbom cyclonedx

Updated Jun 11, 2024
Python

anthonyharrison / sbom2dot

Create a dependency graph of the components within a SBOM

spdx graphviz-dot-language sbom cyclonedx sbom-tool

Updated Mar 25, 2024
Python

Improve this page

Add a description, image, and links to the cyclonedx topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the cyclonedx topic, visit your repo's landing page and select "manage topics."