GitHub

MoriwakiYusuke/sbom-python-test

このプロジェクトは,複数のSBOM(ソフトウェア部品表)生成ツールをテストし,比較・学習するための最小限のPython環境です. 依存関係が少ない2つのシンプルなライブラリ (colorama と pyfiglet) を ...
GitHub

NoorahSmith/syft-SBOM-anchore

A CLI tool and Go library for generating a Software Bill of Materials (SBOM) from container images and filesystems. Exceptional for vulnerability detection when used with a scanner like Grype.
InfoWorld

Software bill-of-materials docs eyed for Python packages

Python enhancement proposal would incorporate SBOM documents in Python packages as a way to improve dependency tracking and vulnerability analysis. Software bill-of-materials (SBOM) documents would be ...
Security Boulevard

Syft 1.20: Faster Scans, Smarter License Detection, and Enhanced Bitnami Support

We’re excited to announce Syft v1.20.0! If you’re new to the community, Syft is Anchore’s open source software composition analysis (SCA) and SBOM generation tool that provides foundational support ...
Business Insider

Anchore Adds Support for SPDX to Syft SBOM Generator Tool

SANTA BARBARA, Calif., Oct. 11, 2021 /PRNewswire/ -- KUBECON 2021 -- Anchore, a leader in software supply chain security, today announced that Syft, an open source tool that generates a Software Bill ...