cyclonedx-bom-repo-server vs sbom-tool

Our great sponsors

InfluxDB - Power Real-Time Data Analytics at Scale

WorkOS - The modern identity platform for B2B SaaS

SaaSHub - Software Alternatives and Reviews

Our great sponsors

cyclonedx-bom-repo-server		sbom-tool
	Project
1	Mentions	8
64	Stars	1,438
-	Growth	6.1%
0.0	Activity	8.9
about 1 year ago	Latest Commit	4 days ago
C#	Language	C#
Apache License 2.0	License	MIT License

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

cyclonedx-bom-repo-server

Posts with mentions or reviews of cyclonedx-bom-repo-server. We have used some of these posts to build our list of alternatives and similar projects.

SBom repository?
1 project | /r/devops | 6 Jan 2022

sbom-tool

Posts with mentions or reviews of sbom-tool. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-04-25.

An Intro to SBOMs
2 projects | news.ycombinator.com | 25 Apr 2023

I use them. With the Microsoft SBOM tool[0] I generate a SBOM (which is unfortunately missing license information) and then feed them to Google OSV scanner to check for vulnerabilities. Not unlike Github Advanced Security does.
[0]: https://github.com/microsoft/sbom-tool
Do you SecDevOps?
4 projects | /r/delphi | 16 Dec 2022

Alternative it would be nice, if there is way to get an SBOM (Software Bill of Materials). Microsoft created an Open Source Tool to get an SBOM for many programming languages, but pascal is not one of this. With a SBOM file, it should be possible to run it against a tool like CycloneDX.
Renovate, a Dependabot alternative
1 project | /r/devops | 21 Aug 2022
SBOM Tool
1 project | /r/devopspro | 9 Aug 2022
sbom-tool: The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.
1 project | /r/RedSec | 15 Jul 2022

1 project | /r/blueteamsec | 14 Jul 2022
Salus – SBOM Tool
1 project | news.ycombinator.com | 13 Jul 2022
Microsoft released their SBOM generation tool as open source!
1 project | /r/cybersecurity | 13 Jul 2022

What are some alternatives?

When comparing cyclonedx-bom-repo-server and sbom-tool you can also consider the following projects:

cyclonedx-gradle-plugin - Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects

dependency-track - Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

ort - A suite of tools to automate software compliance checks.

awesome-sbom - A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles

cyclonedx-maven-plugin - Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects

security-code-scan - Vulnerability Patterns Detector for C# and VB.NET

osv-scanner - Vulnerability scanner written in Go which uses the data provided by https://osv.dev

syft - CLI tool and library for generating a Software Bill of Materials from container images and filesystems

cyclonedx-bom-repo-server vs cyclonedx-gradle-plugin sbom-tool vs cyclonedx-gradle-plugin cyclonedx-bom-repo-server vs dependency-track sbom-tool vs ort cyclonedx-bom-repo-server vs awesome-sbom sbom-tool vs cyclonedx-maven-plugin cyclonedx-bom-repo-server vs security-code-scan sbom-tool vs osv-scanner cyclonedx-bom-repo-server vs syft sbom-tool vs awesome-sbom

Compare cyclonedx-bom-repo-server vs sbom-tool and see what are their differences.

cyclonedx-bom-repo-server

sbom-tool

cyclonedx-bom-repo-server

sbom-tool

What are some alternatives?