Commandline tool to automatically gather the license information for all your NuGet packages.

Creates CycloneDX Software Bill-of-Materials (SBoM) from NuGet projects

Test scan docker-image with various SBOM tools

Convert Tool Output to Reference Output

User interface for BOM-bar

Comparator tool for evaluation of the output from multiple bill-of-material analyzers

Lockheed Martin developed utility to compare two CycloneDX SBOMs

GitHub Action to get a license overview in SPDX format

Retrieves the (flat) list of package dependencies for a Javascript project using the npm package manager.

Extracts dependencies from the output (source csv) of the Detect tool from BlackDuck (Synopsis), to a reference format. This reference format is a JSON file containing arrays of objects with keys name and version.

Tern Docker Images

An experimental user interface for manually creating, editing, and viewing CycloneDX SBOMs

Lockheed Martin developed utility to combine multiple CycloneDX SBOMs

Multi-platform client for license-scanner service.

GitHub action to generate a CycloneDX SBOM for Swift and Objective-C projects that use CocoaPods.

Lockheed Martin developed common library to combine multiple SBOMs

Extracts dependencies from the inventory report json artifact of tool Whitesource.

GitHub Action to perform a docker scan with VMWARE tern

Generate Software Bill-of-Materials (SBOMs) for Python environments from distribution metadata

Caching repository for bill-of-materials metadata