Lockheed Martin developed common library to combine multiple SBOMs
-
Updated
Apr 17, 2023 - Java
Lockheed Martin developed common library to combine multiple SBOMs
A Java project with obsolete hashing methods - for testing code-analysis tools
@jQAssistant plugin to scan and analyze CycloneDX files (e.g. SBOM).
Learn DevSecOps with this Demo Application.
This repo accumulate underlying data and analysis results for assessing the current landscape of open-source and proprietary tools related to Software Bill of Materials (SBOM). We additionally compiled our findings into a comprehensive spreadsheet detailing 86 tools and their use cases.
Lockheed Martin developed common SBOM library
This repo does contains an example of Jenkins/Github Pipeline and a Maven Project.
Creates CycloneDX Software Bill-of-Materials (SBoM) from NuGet projects
PlugFest-in-a-Box is a powerful tool to reveal key areas of difference between several Software Bills of Materials (SBOMs) and applying thorough metrics to identify any and all quality issues.
A simple expense tracker using Spring boot
Caching repository for bill-of-materials metadata
Lucy is a component analysis platform to minimize the risk of license infringements and to support and optimize the license compliance process.
This repo contains the technology stack and its usage for software supply chain security of a Java application
Experimental web service for checking the software bill-of-materials ("SBOM") for projects against license violations.
SBOM-in-a-Box is a unified platform to promote the production, consumption, and utilization of Software Bills of Materials.
Lockheed Martin developed utility to combine multiple CycloneDX SBOMs
Add a description, image, and links to the sbom topic page so that developers can more easily learn about it.
To associate your repository with the sbom topic, visit your repo's landing page and select "manage topics."