Tools ClassificationΒΆ
ID |
Tool |
Generation |
Consumption |
Transformation |
Cyclonedx |
Spdx |
Vulnerabilty Scanning |
Licensing |
Sbom Quality |
---|---|---|---|---|---|---|---|---|---|
apko |
yes |
yes |
yes |
yes |
|||||
SBOM Operator |
yes |
yes |
yes |
yes |
yes |
||||
ScanCode |
yes |
yes |
yes |
yes |
|||||
SPDX SBOM Generator |
yes |
yes |
|||||||
Syft |
yes |
yes |
yes |
||||||
Syft |
yes |
yes |
yes |
||||||
Bomber |
yes |
yes |
yes |
yes |
|||||
DaggerBoard |
yes |
yes |
yes |
yes |
|||||
Dependency-Track |
yes |
yes |
yes |
yes |
|||||
SBOM Scorecard |
yes |
yes |
yes |
yes |
|||||
FOSSology |
yes |
yes |
yes |
||||||
CycloneDX Tool Center |
yes |
yes |
|||||||
Grype |
yes |
yes |
yes |
yes |
|||||
Hoppr Cop |
yes |
yes |
yes |
||||||
SBOM Diff Action |
yes |
yes |
yes |
||||||
SBOM Utility |
yes |
yes |
yes |
yes |
|||||
ScanCode.io |
yes |
yes |
yes |
yes |
yes |
yes |
|||
Trivy |
yes |
yes |
yes |
yes |
yes |
yes |
|||
Vulnerability Operator |
yes |
yes |
yes |
yes |
|||||
CDX2SPDX |
no |
no |
yes |
yes |
yes |
||||
DaggerBoard |
yes |
yes |
yes |
yes |
|||||
DaggerBoard |
yes |
yes |
yes |
yes |
|||||
Docker SBOM |
yes |
yes |
|||||||
SBOM Quality Scoring |
yes |
yes |
yes |
yes |
|||||
FatBOM |
yes |
yes |
yes |
||||||
KubeClarity |
yes |
yes |
yes |
yes |
yes |
||||
K8s BOM |
yes |
yes |
yes |
||||||
OSS Review Toolkit |
yes |
yes |
yes |
yes |
yes |
yes |
|||
Pkgconf bomtool |
yes |
yes |
|||||||
Salus |
yes |
yes |