GUAC aggregates software security metadata into a high fidelity graph database.

Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.

ReARM - Supply Chain Security and Asset Management for Releases, SBOMs, xBOMs, Security Artifacts

A Java library for creating and consuming SBOMs in Standard BOM format

A library and CLI to work with CSAF and SBOM data

A Python library for creating and consuming SBOMs in Standard BOM format

A lightweight Go library for validating Software Bill of Materials (SBOM) against industry-standard specifications

A Crystal tool for generating CycloneDX Software Bill of Materials (SBOM) from Crystal shard projects.

A web application that runs in your browser to visualize the dependencies of a CycloneDX SBOM.

A Python tool to generate Software Bill of Materials (SBOM) for multiple languages.

Heimdall is a C++ toolchain for generating Software Bills of Materials (SBOMs) from compiled binaries, extracting debug information, symbols, and dependencies with plugin support for the LLVM and gold linker. Supports gcc and clang. A CMake module is provided for easy build integration and an SPDX/CycloneDX SBOM validator for BOM validation

This repo hosts a github action to run parlay( which is used to Enrich SBOMs with data from third party services ) in piplines

Two tools, sbomlicense and sbomlicensed, that enrich SBOM files with license information.

Command line tool and python package for interacting with Timesys Vigiles APIs

Outil d'adaptation des SBOMs CycloneDX cdxgen vers le format CycloneDX de Cyberwatch (idéal pour Windows)

A simple library and CLI tool to create an aggregated notice for one or more SBOMs (SPDX or CycloneDX).

Make your SBOM CERT-In compliant

SBOM - Software Bill of Materials

Visualize your software supply chain

Bitbucket pipe to generate a CycloneDX sBOM for Java, Go, Python & Node projects