Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Generate CycloneDX SBOM #551

Merged
merged 1 commit into from
May 12, 2022
Merged

Generate CycloneDX SBOM #551

merged 1 commit into from
May 12, 2022

Conversation

VinodAnandan
Copy link
Contributor

OWASP CycloneDX is a lightweight Software Bill of Materials (SBOM) standard designed to use in the application security contexts and supply chain component analysis. CycloneDX is an OWASP flagship project ( owasp.org/www-project-cyclonedx ). The Open Web Application Security Project is a non-profit foundation that works to improve the security of software. CycloneDX is already supported by many security vendors and projects ( cyclonedx.org/about/supporters ). It is also recommended in the Technology Radar Volume 26 ( thoughtworks.com/radar/platforms?blipid=202203034 )

More details about the plugin : https://github.com/CycloneDX/cyclonedx-maven-plugin#maven-usage

@henrikplate
Copy link
Contributor

henrikplate commented May 12, 2022
edited
Loading

@VinodAnandan Thank you for creating the PR, it works well and produces an SBOM for the aggregator POM. Before I proceed with merging, can you please sign Eclipse's contributor agreement?

@VinodAnandan
Copy link
Contributor Author

@henrikplate I have signed Eclipse's contributor agreement

@henrikplate henrikplate merged commit 4162620 into eclipse:master May 12, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@VinodAnandan @henrikplate