scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
-
Updated
Jun 17, 2024 - JavaScript
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. Slack: https://cyclonedx.slack.com/archives/C04NFFE1962
Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
GitHub action to generate a CycloneDX SBOM for Node.js
Security & License Compliance For Your App's Dependencies 🪱
GitHub action to generate a CycloneDX SBOM for Python
Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
GitHub action to generate a CycloneDX SBOM for .NET
Service to scan licenses from source code
A GitHub Action that takes SPDX SBOMs and uploads them to GitHub's dependency submission API to power Dependabot alerts
node-dependency-track-upload
GitHub action to generate a CycloneDX SBOM for PHP Composer
Automated Secrets, Misconfiguration, IaC Misconfiguration detection, and OSS by Check Point CloudGuard
Add a description, image, and links to the sbom topic page so that developers can more easily learn about it.
To associate your repository with the sbom topic, visit your repo's landing page and select "manage topics."