* [CycloneDX Generator (cdxgen) v12.5.0](https://github.com/cdxgen/cdxgen) – CLI, library, REPL, and server generating CycloneDX Bill of Materials (BOM) in JSON for projects and container images.

* [Chainloop v1.99.0](https://github.com/chainloop-dev/chainloop) – Evidence store and policy engine for Software Supply Chain attestations, SBOMs, VEX, SARIF, and QA reports.

* [Konflux-CI v0.2.0](https://github.com/konflux-ci/konflux-ci) – CI/CD platform for building, testing, and releasing applications on Kubernetes clusters.

* [cyclonedx-go v0.11.0](https://github.com/CycloneDX/cyclonedx-go) – Go library for producing and consuming Software Bill of Materials (SBOM) documents.

* [sbom-operator 0.42.2](https://github.com/ckotzbauer/sbom-operator) – Catalog all Kubernetes cluster container images and generate SBOMs with Syft, storing results to Git, Dependency-Track, OCI registries, or ConfigMaps.

* [sbomqs v2.0.8](https://github.com/interlynk-io/sbomqs) – Evaluates SBOM quality, validates compliance against standards, analyzes components, and identifies vulnerabilities.