OWASP CycloneDX Software Bill of Materials (SBOM) Standard - discu.eu

Linking pages

Have we reached a point of no return on managing software dependencies? · Paolo Mainardi https://www.paolomainardi.com/posts/point-of-no-return-on-managing-software-dependencies/ 64 comments
GitHub - 1Password/1password-teams-open-source: Get a free 1Password Teams membership for your open source project https://github.com/1Password/1password-teams-open-source 59 comments
GitHub - owasp-change/owasp-change.github.io: An Open Letter to the OWASP Board https://github.com/owasp-change/owasp-change.github.io 45 comments
GitHub - anchore/grype: A vulnerability scanner for container images and filesystems https://github.com/anchore/grype 17 comments
What I Learned Watching All 44 AppSec Cali 2019 Talks - tl;dr sec https://tldrsec.com/blog/appsec-cali-2019/ 15 comments
GitHub - google/osv-scanner: Vulnerability scanner written in Go which uses the data provided by https://osv.dev https://github.com/google/osv-scanner 14 comments
GitHub - devops-kung-fu/bomber: Scans Software Bill of Materials (SBOMs) for security vulnerabilities https://github.com/devops-kung-fu/bomber 7 comments
6 DevOps Trends for 2022 - Work & Life Notes https://worklifenotes.com/2021/12/22/6-devops-trends-for-2022/ 4 comments
SBOM 101 - All the questions you were afraid to ask Software Bill of Materials https://sysdig.com/blog/sbom-101-software-bill-of-materials/ 3 comments
GitHub - chainguard-dev/ssc-reading-list: A reading list for software supply-chain security. https://github.com/chainguard-dev/ssc-reading-list 3 comments
GitHub - noqcks/xeol: An end-of-life (EOL) package scanner for container images, systems, and SBOMs https://github.com/noqcks/xeol 3 comments
8 top SBOM tools to consider | CSO Online https://www.csoonline.com/article/3667483/8-top-sbom-tools-to-consider.html 1 comment
GitHub - DependencyTrack/dependency-track: Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain. https://github.com/DependencyTrack/dependency-track 1 comment
SOOS Community Edition SCA - Free for Open Source Projects https://soos.io/products/community-edition 1 comment
Architecture - Deployment Pipeline Reference Architecture https://pipelines.devops.aws.dev/application-pipeline/ 1 comment
What is software bill of materials (SBOM)? https://www.techtarget.com/whatis/definition/software-bill-of-materials-SBOM 0 comments
My favorite tools to keep a zero vulnerabilities posture for Constellation | by Fabian Kammel | Oct, 2022 | Edgeless Systems https://blog.edgeless.systems/my-favorite-tools-to-keep-a-zero-vulnerabilities-posture-for-constellation-c3ed13d0b580?gi=f9c616966a41 0 comments
DevOps Bundles - New Name of The Game - Work & Life Notes https://worklifenotes.com/2020/11/15/devops-bundles-new-name-of-the-game/ 0 comments
GitHub - oss-review-toolkit/ort: A suite of tools to assist with reviewing Open Source Software dependencies. https://github.com/heremaps/oss-review-toolkit 0 comments
GitHub - tern-tools/tern: Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more. https://github.com/vmware/tern 0 comments

Related searches:

Search whole site: site:cyclonedx.org

Search title: OWASP CycloneDX Software Bill of Materials (SBOM) Standard

See how to search.

Submit link to: