eBay/sbom-scorecard
Generate a score for your sbom to understand if it will actually be useful.
GoApache-2.0
Issues
- 0
Consider contributing to OpenSSF
#45 opened by lucasgonze - 6
tag-value documents not parsing properly
#25 opened by justinabrahms - 0
- 3
Evaluate & Adhere (or have good reasons why not) to NTIA minimal elements
#34 opened by justinabrahms - 3
BOM Maturity Model
#4 opened by stevespringett - 5
SPDX questions/bugs
#22 opened by rnjudge - 2
- 1
- 2
spdx: follow LicenseRefs
#27 opened by justinabrahms - 1
- 1
- 0
- 0
Tutorial is wrong about installation.
#21 opened by justinabrahms - 0
- 2
Code assumes json format for CycloneDX SBOMs
#16 opened by cyberbliss - 7
tutorial missing
#14 opened by AnaisUrlichs - 4
BUG: Trivy CycloneDX scan does not work
#15 opened by AnaisUrlichs - 1
- 0
Add SPDX package version logic
#9 opened by jspeed-meyers - 0
Support json output
#7 opened by justinabrahms - 0
Add CLI support
#6 opened by pxp928 - 1
Support for CycloneDX
#3 opened by justinabrahms - 0
Support for Syft
#2 opened by justinabrahms