Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide support for CycloneDX SBOM #139

Open
VinodAnandan opened this issue Jun 26, 2022 · 1 comment
Open

Provide support for CycloneDX SBOM #139

VinodAnandan opened this issue Jun 26, 2022 · 1 comment
Labels
enhancement New feature or request

Comments

@VinodAnandan
Copy link

OWASP CycloneDX is a lightweight Software Bill of Materials (SBOM) standard designed to use in the application security contexts and supply chain component analysis. CycloneDX is an OWASP flagship project ( owasp.org/www-project-cyclonedx ). The Open Web Application Security Project is a non-profit foundation that works to improve the security of software.

CycloneDX is already supported by many security vendors and projects ( cyclonedx.org/about/supporters ). It is also recommended in the Technology Radar Volume 26 ( thoughtworks.com/radar/platforms?blipid=202203034 )

Related links:

https://github.com/CycloneDX/cyclonedx-go
@G-Rath G-Rath added the enhancement New feature or request label Jul 4, 2022
@G-Rath
Copy link
Owner

G-Rath commented Jul 5, 2022

As I said on Slack, I've been thinking about this myself so your timing is perfect.

Would you happen to have some examples I could use for fixtures? Ideally some with Ruby gems and npm based packages would be great, but the more and the weird the better!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@G-Rath @VinodAnandan