bill-of-materials
There are 89 repositories under bill-of-materials topic.
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
hildogjr/KiCost
Build cost spreadsheet for a KiCad project.
CycloneDX/specification
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
CycloneDX/cyclonedx-cli
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
CycloneDX/cyclonedx-maven-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
spdx/spdx-spec
The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
CycloneDX/cyclonedx-python
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
CycloneDX/cyclonedx-dotnet
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
CycloneDX/bom-examples
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
CycloneDX/cyclonedx-gradle-plugin
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
CycloneDX/cyclonedx-gomod
Creates CycloneDX Software Bill of Materials (SBOM) from Go modules
tiiuae/sbomnix
A suite of utilities to help with software supply chain challenges on nix targets
CycloneDX/cyclonedx-rust-cargo
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
CycloneDX/sbom-utility
Utility that provides an API platform for validating, querying and managing BOM data
CycloneDX/cyclonedx-core-java
CycloneDX SBOM Model and Utils for Creating and Validating BOMs
CycloneDX/cyclonedx-go
Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)
CycloneDX/cyclonedx-node-npm
Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
CycloneDX/cyclonedx-bom-repo-server
A BOM repository server for distributing CycloneDX BOMs
spdx/spdx-3-model
The model for the information captured in SPDX version 3 standard.
CycloneDX/cyclonedx-python-lib
Python implementation of OWASP CycloneDX
nikstur/bombon
Nix CycloneDX Software Bills of Materials (SBOMs)
CycloneDX/transparency-exchange-api
A standard API specification for exchanging supply chain artifacts and intelligence
CERTCC/SBOM
Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
CycloneDX/cyclonedx-php-composer
Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
CycloneDX/cyclonedx-linux-generator
Lockheed Martin developed utility to generate CycloneDX SBOMs for Linux distributions
sw360/sw360portal
We have moved and *archived* this repository. Pls. continue at the new place at https://github.com/eclipse/sw360 ... A software component catalogue application - designed to work with FOSSology.
CycloneDX/cyclonedx-web-tool
A web based tool for working with CycloneDX BOMs
CycloneDX/cyclonedx-webpack-plugin
Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
CycloneDX/Sunshine
Sunshine - SBOM visualization tool
SecureStackCo/actions-sbom
A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements, and has the SBOM to show it!
spring-projects/spring-data-bom
Spring Data Bill of Materials
CycloneDX/cyclonedx-ruby-gem
Creates CycloneDX Software Bill of Materials (SBOM) from Ruby projects
CycloneDX/cyclonedx-cocoapods
Creates CycloneDX Software Bill-of-Materials (SBOM) from Objective-C and Swift projects that use CocoaPods.
CycloneDX/cyclonedx-node-yarn
Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
CycloneDX/gh-node-module-generatebom
GitHub action to generate a CycloneDX SBOM for Node.js
ozonru/cyclonedx-go
Creates CycloneDX Software Bill-of-Materials (SBOM) from Go projects. So you can use it with DependencyTrack to monitor security issues in 3rd party modules.