CycloneDX SBOM Standard

CycloneDX is a modern standard for the software supply chain. SBOM, SaaSBOM, OBOM, Advisories, VEX, and more. CycloneDX is a OWASP Flagship Project.

OWASP

Pinned Repositories

bom-examples
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
157 11 1654
cdxgen
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. Slack: https://cyclonedx.slack.com/archives/C04NFFE1962
Language:JavaScript486 13 614142
cyclonedx-cli
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Language:C#269 15 14758
cyclonedx-dotnet
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Language:C#165 13 18278
cyclonedx-gomod
Creates CycloneDX Software Bill of Materials (SBOM) from Go modules
Language:Go127 7 7521
cyclonedx-gradle-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
Language:Java143 12 13871
cyclonedx-maven-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Language:Java277 15 18284
cyclonedx-node-module
creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
121 8 9837
cyclonedx-python
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
Language:Python217 14 16262
specification
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
Language:XSLT331 28 27657

CycloneDX SBOM Standard's Repositories

CycloneDX/cdxgen
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. Slack: https://cyclonedx.slack.com/archives/C04NFFE1962
Language:JavaScript486 13 614142
CycloneDX/specification
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
Language:XSLT331 28 27657
CycloneDX/cyclonedx-maven-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Language:Java277 15 18284
CycloneDX/cyclonedx-cli
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Language:C#269 15 14758
CycloneDX/cyclonedx-python
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
Language:Python217 14 16262
CycloneDX/cyclonedx-dotnet
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Language:C#165 13 18278
CycloneDX/bom-examples
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
157 11 1654
CycloneDX/cyclonedx-gradle-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
Language:Java143 12 13871
CycloneDX/cyclonedx-gomod
Creates CycloneDX Software Bill of Materials (SBOM) from Go modules
Language:Go127 7 7521
CycloneDX/cyclonedx-node-module
creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
121 8 9837
CycloneDX/cyclonedx-rust-cargo
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
Language:Rust78 10 8838
CycloneDX/sbom-utility
Utility that provides an API platform for validating, querying and managing BOM data
Language:Go78 5 3711
CycloneDX/cyclonedx-core-java
CycloneDX SBOM Model and Utils for Creating and Validating BOMs
Language:Java72 8 7754
CycloneDX/cyclonedx-go
Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)
Language:Go65 8 3326
CycloneDX/cyclonedx-node-npm
Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
Language:TypeScript64 4 7617
CycloneDX/cyclonedx-python-lib
Python implementation of OWASP CycloneDX
Language:Python61 15 14832
CycloneDX/cyclonedx-php-composer
Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
Language:PHP44 5 767
CycloneDX/license-scanner
Utility that provides an API and CLI to identify licenses and legal terms
Language:Go41 6 108
CycloneDX/transparency-exchange-api
A standard API specification for exchanging supply chain artifacts and intelligence
30 15 113
CycloneDX/cyclonedx-webpack-plugin
Create CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
Language:TypeScript23 4 398
CycloneDX/cyclonedx-dotnet-library
.NET library to consume and produce CycloneDX Software Bill of Materials (SBOM)
Language:C#17 5 3719
CycloneDX/cyclonedx-javascript-library
Core functionality of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.
Language:TypeScript14 6 759
CycloneDX/cyclonedx-property-taxonomy
A taxonomy of all official CycloneDX property namespaces and names
14 10 3927
CycloneDX/cyclonedx-node-yarn
Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
Language:JavaScript13 6 344
CycloneDX/cyclonedx-node-pnpm
Create CycloneDX Software Bill of Materials (SBOM) from Node.js PNPM projects.
11 6 24
CycloneDX/cyclonedx.org
Public website cyclonedx.org
Language:HTML8 12 2475
CycloneDX/cyclonedx-buildroot
Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects
Language:Python7 5 143
CycloneDX/cyclonedx-php-library
PHP Implementation of OWASP CycloneDX Bill of Materials (BOM)
Language:PHP6 5 650
CycloneDX/homebrew-cyclonedx
CycloneDX Homebrew Tap
Language:Ruby1 9 11
CycloneDX/.github
6 73