[1]: https://docs.docker.com/build/metadata/attestations/sbom/#sbom-generator [2]: https://docs.docker.com/build/metadata/attestations/sbom/#inspecting-sboms Signed-off-by: Helio Chissini de Castro <helio.chissini.de.castro@cariad.technology>...
A CLI tool and Go library for generating a Software Bill of Materials (SBOM) from container images and filesystems. Exceptional for vulnerability detection when used with a scanner like Grype. Join our community meetings! Calendar: https://calendar.google.com/calendar/u/0/r?cid=Y182OTM4dGt...
The ability to convert existing SBOMs means you can create SBOMs in different formats quickly, without the need to regenerate the SBOM from scratch, which may take significantly more time. syft convert <ORIGINAL-SBOM-FILE> -o <NEW-SBOM-FORMAT>[=<NEW-SBOM-FILE>] This feature is experimental...
anchore-actions-token-generator[bot] and spiffcs chore(deps): update tools to latest versions (#3478) Nov 27, 2024 a320cf7·Nov 27, 2024 History 2,483 Commits .github cmd/syft examples internal schema syft test .binny.yaml .bouncer.yaml ...
A CLI tool and Go library for generating a Software Bill of Materials (SBOM) from container images and filesystems. Exceptional for vulnerability detection when used with a scanner like Grype. Introduction Syft is a powerful and easy-to-use open-source tool for generating Software Bill of Mate...
anchore/sbom-actionUse this GitHub action with your projectAdd this Action to an existing workflow or create a new oneView on Marketplace main 5 Branches43 Tags Code Folders and files Latest commit anchore-actions-token-generator[bot]and willmurphyscode chore(deps): update Syft to v1.15.0 (...
anchore-actions-token-generator[bot]and wagoodman chore(deps): update CPE dictionary index (anchore#3135) 511cc9c· Aug 20, 2024 History2,284 Commits .github chore(deps): bump anchore/sbom-action from 0.17.0 to 0.17.1 (anchore#… Aug 16, 2024 cmd/syft chore(deps): update tools to lat...