sbom

Past 30d, sorted by best first

03/14	7	chainloop-dev/Chainloop v1.82.0 Evidence store and policy engine for Software Supply Chain attestations, SBOMs, VEX, SARIF, and QA reports. Go 537☆ 1108d old #golang #go #devsecops #compliance #cyclonedx
03/08	7	cdxgen/CycloneDX Generator (cdxgen) v12.1.2 CLI, library, REPL, and server generating CycloneDX Bill of Materials (BOM) in JSON for projects and container images. JavaScript 916☆ 2265d old #javascript #docker #cyclonedx #sbom #bom
02/25	7	oracle/Macaron v0.22.0 Supply chain security analysis tool focused on verifying build integrity and detecting malicious or vulnerable software artifacts. Python 187☆ 1180d old #python #build-system #cicd #supply-chain-security #sbom
03/09	5	anchore/Grant v0.6.3 CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems. Go 147☆ 1191d old #golang #go #static-analysis #compliance #sbom