Go cyclonedx

Open-source Go projects categorized as cyclonedx
Edit details
sbom spdx Golang Go Security
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Top 7 Go cyclonedx Projects

cyclonedx

  1. grype

    A vulnerability scanner for container images and filesystems

    Project mention: Deep Dive 🤿: Where Does Grype Data Come From? | dev.to | 2024-11-12

  2. InfluxDB

    InfluxDB high-performance time series database. Collect, organize, and act on massive volumes of high-resolution data to power real-time intelligent systems.

    InfluxDB logo

  3. syft

    CLI tool and library for generating a Software Bill of Materials from container images and filesystems

    Project mention: Open Source projects could sell SBoM fragments | news.ycombinator.com | 2025-02-17

    Syft (https://github.com/anchore/syft) and ScanCode (https://github.com/aboutcode-org/scancode-toolkit) are good open-source tools to generate SBOMs and search repos for licensing information — I'm curious to hear if there are reasons why those wouldn't work for enterprise purposes.

  4. bomber

    Scans Software Bill of Materials (SBOMs) for security vulnerabilities

  5. chainloop

    Evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more

  6. SBOM Quality Score

    SBOM quality score - Quality metrics for your sboms

  7. parlay

    Enrich SBOMs with data from third party services

  8. sbomasm

    SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.

  9. CodeRabbit

    CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.

    CodeRabbit logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Go cyclonedx discussion

Log in or Post with

Go cyclonedx related posts

  • Open Source projects could sell SBoM fragments

    3 projects | news.ycombinator.com | 17 Feb 2025

  • Deep Dive 🤿: Where Does Grype Data Come From?

    5 projects | dev.to | 12 Nov 2024

  • Ask HN: Pragmatic way to avoid supply chain attacks as a developer

    3 projects | news.ycombinator.com | 17 Aug 2024

  • 12 Things You Might Not Know About Buildpacks

    8 projects | dev.to | 1 Dec 2022

  • Bomber - Scans SBOMs for Vulnerabilities

    1 project | /r/devsecops | 17 Oct 2022

  • bomber: Scans SBoMs for security vulnerabilities

    1 project | /r/blueteamsec | 24 Aug 2022

  • bomber - a vulnerability scanner for SBOMs

    1 project | /r/RedSec | 24 Aug 2022
  • A note from our sponsor - CodeRabbit
    coderabbit.ai | 30 Apr 2025
    Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR. Learn more →

Index

What are some of the best open-source cyclonedx projects in Go? This list will help you:

# Project Stars
1 grype 9,750
2 syft 6,880
3 bomber 563
4 chainloop 427
5 SBOM Quality Score 206
6 parlay 168
7 sbomasm 69

Sponsored
InfluxDB high-performance time series database
Collect, organize, and act on massive volumes of high-resolution data to power real-time intelligent systems.
influxdata.com

Did you know that Go is
the 4th most popular programming language
based on number of references?

Loading...