OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
-
Updated
Oct 11, 2024 - Go
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX
A simple webapp that provides guidance on and creates Package URLs of type "swid"
Generate Software ID (SWID) Tag online, according to ISO/IEC 19770-2:2015
Add a description, image, and links to the swid topic page so that developers can more easily learn about it.
To associate your repository with the swid topic, visit your repo's landing page and select "manage topics."