Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. GPT: https://chatgpt.com/g/g-673bfeb4037481919be8a2cd1bf868d2-cdxgen

OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX

Python implementation of OWASP CycloneDX

This repository contains a SonarQube Plugin that detects cryptographic assets in source code and generates CBOM.

A toolset for dealing with Cryptography Bill of Materials (CBOM)

A tool for detecting cryptographic assets in container images and directories, and generating CBOMs.

A Java project with obsolete hashing methods - for testing code-analysis tools

Contains a tool (and test files) for creating a JSON Cryptographic-Bill-Of-Materials (CBOM) document. The tool is a prototype and is still under development. Currently able to create CBOM documents only from Javascript files that use the Node Crypto module.

Data and schema powering the worlds largest collection of SBOM/xBOM products, projects, and services